Uploaded image for project: 'DMC - Development'
  1. DMC - Development
  2. DMC-993

Use-after-free in the davix cache

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: davix 0.6.6
    • Fix Version/s: davix 0.6.7
    • Component/s: Davix
    • Security Level: Public Data (This ticket is visible to anyone on the internet and will be indexed by search engines)
    • Labels:
      None

      Description

      ==1823==ERROR: AddressSanitizer: heap-use-after-free on address 0x607000001cd0 at pc 0x55798b184404 bp 0x7ffcc09c25e0 sp 0x7ffcc09c25d0
      READ of size 8 at 0x607000001cd0 thread T0
          #0 0x55798b184403 in std::__shared_ptr<DummyStruct, (__gnu_cxx::_Lock_policy)2>::__shared_ptr(std::__shared_ptr<DummyStruct, (__gnu_cxx::_Lock_policy)2> const&) /usr/include/c++/7/bits/shared_ptr_base.h:1121
          #1 0x55798b184497 in std::shared_ptr<DummyStruct>::shared_ptr(std::shared_ptr<DummyStruct> const&) /usr/include/c++/7/bits/shared_ptr.h:119
          #2 0x55798b184fa5 in Davix::Cache<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >, DummyStruct, std::less<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > > >::take(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&) /home/gbitzes/dev/davix/src/libs/alibxx/containers/cache.hpp:93
          #3 0x55798b17f50d in ALibxx_CacheTest_Test::TestBody() /home/gbitzes/dev/davix/test/unit/alibxx/cache_tests.cpp:38
          #4 0x55798b233b24 in void testing::internal::HandleSehExceptionsInMethodIfSupported<testing::Test, void>(testing::Test*, void (testing::Test::*)(), char const*) /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2402
          #5 0x55798b2259a0 in void testing::internal::HandleExceptionsInMethodIfSupported<testing::Test, void>(testing::Test*, void (testing::Test::*)(), char const*) /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2438
          #6 0x55798b1dca40 in testing::Test::Run() /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2474
          #7 0x55798b1dde7c in testing::TestInfo::Run() /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2656
          #8 0x55798b1deb91 in testing::TestCase::Run() /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2774
          #9 0x55798b1f0678 in testing::internal::UnitTestImpl::RunAllTests() /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:4647
          #10 0x55798b236a79 in bool testing::internal::HandleSehExceptionsInMethodIfSupported<testing::internal::UnitTestImpl, bool>(testing::internal::UnitTestImpl*, bool (testing::internal::UnitTestImpl::*)(), char const*) /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2402
          #11 0x55798b227f3c in bool testing::internal::HandleExceptionsInMethodIfSupported<testing::internal::UnitTestImpl, bool>(testing::internal::UnitTestImpl*, bool (testing::internal::UnitTestImpl::*)(), char const*) /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:2438
          #12 0x55798b1ed61a in testing::UnitTest::Run() /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest.cc:4255
          #13 0x55798b256ce9 in RUN_ALL_TESTS() /home/gbitzes/dev/davix/deps/googletest/googletest/include/gtest/gtest.h:2237
          #14 0x55798b256b70 in main /home/gbitzes/dev/davix/deps/googletest/googletest/src/gtest_main.cc:37
          #15 0x7f9e87b191c0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x211c0)
          #16 0x55798b0bb439 in _start (/home/gbitzes/dev/davix/build/test/unit/g_test_unit_davix_exe+0xd9439)
      
      

        Attachments

          Activity

            People

            • Assignee:
              gbitzes Georgios Bitzes
              Reporter:
              gbitzes Georgios Bitzes
              Component Watchers:
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: