mirror of
https://github.com/Divested-Mobile/DivestOS-Build.git
synced 2024-12-14 02:14:34 -05:00
59bf3b75c7
https://review.lineageos.org/c/LineageOS/android_frameworks_base/+/353117 https://review.lineageos.org/q/topic:Q_asb_2023-03 https://review.lineageos.org/q/topic:Q_asb_2023-04 https://review.lineageos.org/q/topic:Q_asb_2023-05 https://review.lineageos.org/q/topic:Q_asb_2023-06 https://review.lineageos.org/q/topic:Q_asb_2023-07 https://review.lineageos.org/q/topic:Q_asb_2023-08 accounted for via patches: https://review.lineageos.org/c/LineageOS/android_system_ca-certificates/+/376560 https://review.lineageos.org/c/LineageOS/android_system_ca-certificates/+/376561 https://review.lineageos.org/c/LineageOS/android_system_ca-certificates/+/376562 https://review.lineageos.org/q/topic:Q_asb_2023-09 https://review.lineageos.org/q/topic:Q_asb_2023-10 https://review.lineageos.org/q/topic:Q_asb_2023-11 accounted for via patches: https://review.lineageos.org/c/LineageOS/android_system_ca-certificates/+/376563 accounted for via manifest change: https://review.lineageos.org/c/LineageOS/android_external_webp/+/376568 https://review.lineageos.org/q/topic:Q_asb_2023-12 https://review.lineageos.org/q/topic:Q_asb_2024-01 https://review.lineageos.org/q/topic:Q_asb_2024-02 https://review.lineageos.org/q/topic:Q_asb_2024-03 Signed-off-by: Tavi <tavi@divested.dev>
33 lines
1.3 KiB
Diff
33 lines
1.3 KiB
Diff
From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
|
|
From: Shruti Bihani <shrutibihani@google.com>
|
|
Date: Thu, 6 Jul 2023 08:41:56 +0000
|
|
Subject: [PATCH] Fix Segv on unknown address error flagged by fuzzer test.
|
|
|
|
The error is thrown when the destructor tries to free pointer memory.
|
|
This is happening for cases where the pointer was not initialized. Initializing it to a default value fixes the error.
|
|
|
|
Bug: 245135112
|
|
Test: Build mtp_host_property_fuzzer and run on the target device
|
|
(cherry picked from commit 3afa6e80e8568fe63f893fa354bc79ef91d3dcc0)
|
|
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:d44311374e41a26b28db56794c9a7890a13a6972)
|
|
Merged-In: I255cd68b7641e96ac47ab81479b9b46b78c15580
|
|
Change-Id: I255cd68b7641e96ac47ab81479b9b46b78c15580
|
|
---
|
|
media/mtp/MtpProperty.h | 3 +++
|
|
1 file changed, 3 insertions(+)
|
|
|
|
diff --git a/media/mtp/MtpProperty.h b/media/mtp/MtpProperty.h
|
|
index bfd5f7f59a..1eb8874af1 100644
|
|
--- a/media/mtp/MtpProperty.h
|
|
+++ b/media/mtp/MtpProperty.h
|
|
@@ -26,6 +26,9 @@ namespace android {
|
|
class MtpDataPacket;
|
|
|
|
struct MtpPropertyValue {
|
|
+ // pointer str initialized to NULL so that free operation
|
|
+ // is not called for pre-assigned value
|
|
+ MtpPropertyValue() : str (NULL) {}
|
|
union {
|
|
int8_t i8;
|
|
uint8_t u8;
|