Summary: | net-mgmt/net-snmp: memory leak in swrun_kinfo.c | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | Ports & Packages | Reporter: | Markus Wennrich <mwennrich> | ||||||
Component: | Individual Port(s) | Assignee: | Ryan Steinmetz <zi> | ||||||
Status: | Closed Overcome By Events | ||||||||
Severity: | Affects Some People | CC: | erik, pi, w.schwarzenfeld | ||||||
Priority: | --- | Flags: | bugzilla:
maintainer-feedback?
(zi) |
||||||
Version: | Latest | ||||||||
Hardware: | Any | ||||||||
OS: | Any | ||||||||
Attachments: |
|
Description
Markus Wennrich
2017-05-04 19:37:15 UTC
Created attachment 182307 [details]
patch for agent/mibgroup/host/data_access/swrun_kinfo.c (fixed)
Sorry, nearly introduced a use-after-free bug. Fixed patch uploaded. Maintainer feedback? This bug is still in 5.8 and the fix needs to be upstreamed. This issue still exists (it may leak a significant amount of memory each day). Would it be possible to add the patch to pkg/ports builds? maintainer in general asks to push upstream to include the patches upstream. Can you try to push upstream ? Sure, I can do a +1 on the issue upstream, however attempts have been made to push this upstream but nothing has happened for two years. If I get no reply in reasonable time, would you consider add the patch to ports? There's probably more needed than a +1 on upstream. It's more: Get in touch with the upstream maintainer by mail or phone or ..., and get him to approve/apply the patch. Thankfully a fix has been applied to the v5.8 and master branches of net-snmp. So while still on the 5.7 series, would it be possible to have this patch locally applied? https://github.com/net-snmp/net-snmp/issues/61 I've verified that applying this patch solves the issue for net-snmp 5.7.3 as well. No memory leak for the last week. https://github.com/net-snmp/net-snmp/commit/5846564f5be46e0e362be894d4cb57be383c5b3d Handled as part of the 5.9 update |