[Pidgin] #11525: double free if ssl handshake fails with jabber
Pidgin
trac at pidgin.im
Mon Mar 8 13:42:36 EST 2010
#11525: double free if ssl handshake fails with jabber
--------------------+-------------------------------------------------------
Reporter: ari | Owner: deryni
Type: defect | Status: new
Component: XMPP | Version: 2.6.6
Keywords: |
--------------------+-------------------------------------------------------
If SSL/TLS negotiazion fails while connecting to a XMPP server, libpurple
crashes with a double free: purple_ssl_close() is called twice,
once from ssl_nss_connect() after the SSL negotiation fails,
once from jabber_close()
The call to jabber_close() is done by purple_connection_disconnect_cb(),
which
is the callback invoked after an error in the connection is detected.
I am attaching a GDB session with some backtraces done with qutecom, but
the
same issues is reproducible using the modified nullclient I have attached
to #11524. Triggering bug #11524 it is an easy way to generate SSL
connection failure.
--
Ticket URL: <http://developer.pidgin.im/ticket/11525>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list