[Bug 1469090] [NEW] undefined behaviour in msgpack::unpacker::next - malloc/delete
Public bug reported: * Description:Ubuntu 14.10 Release: 14.10 * 0.5.7-3ubuntu1 * I expected that application linked with msgpack3 passed all valgrind memory checks * undefined behaviour in msgpack::unpacker::next - malloc/delete === In 0.5.7 version msgpack::unpacker holds zone in std::aut_ptr. In msgpack::unpacker::next on line 234 we can see this code: result->zone().reset( release_zone() ); Look here: https://github.com/msgpack/msgpack-c/blob/cpp-0.5/src/msgpack/unpack.hpp#L234 release_zone() implemented in C-style with malloc(). Line 234 causes an undefined behaviour: malloc/delete. This bug and many others fixed in 0.5.9. 0.5.9 and 0.5.7 have the same API, so there is no reason to have old version of msgpack in Ubuntu repo. ** Affects: msgpack (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1469090 Title: undefined behaviour in msgpack::unpacker::next - malloc/delete To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/msgpack/+bug/1469090/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1469090] Re: undefined behaviour in msgpack::unpacker::next - malloc/delete
Hello! here you are: https://github.com/shilkin/msgpack_0.5.7-bug-1469090 Step-by-step instructions to reproduce this bug. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1469090 Title: undefined behaviour in msgpack::unpacker::next - malloc/delete To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/msgpack/+bug/1469090/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1469090] Re: undefined behaviour in msgpack::unpacker::next - malloc/delete
Knock-knock! Please, give me any feedback? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1469090 Title: undefined behaviour in msgpack::unpacker::next - malloc/delete To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/msgpack/+bug/1469090/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1469090] Re: undefined behaviour in msgpack::unpacker::next - malloc/delete
** Description changed: * Description: Ubuntu 14.10 - Release: 14.10 + Release: 14.10 * 0.5.7-3ubuntu1 * I expected that application linked with msgpack3 passed all valgrind memory checks * undefined behaviour in msgpack::unpacker::next - malloc/delete + + === + + https://github.com/shilkin/msgpack_0.5.7-bug-1469090 + Step-by-step instructions to reproduce this bug. === In 0.5.7 version msgpack::unpacker holds zone in std::aut_ptr. In msgpack::unpacker::next on line 234 we can see this code: result->zone().reset( release_zone() ); Look here: https://github.com/msgpack/msgpack-c/blob/cpp-0.5/src/msgpack/unpack.hpp#L234 release_zone() implemented in C-style with malloc(). Line 234 causes an undefined behaviour: malloc/delete. - This bug and many others fixed in 0.5.9. + This bug and many others fixed in 0.5.9. 0.5.9 and 0.5.7 have the same API, so there is no reason to have old version of msgpack in Ubuntu repo. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1469090 Title: undefined behaviour in msgpack::unpacker::next - malloc/delete To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/msgpack/+bug/1469090/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
