zziplib/CVE-2018-16548-3.patch

From a37ce0d441050356efc5fcaa48e1cdcf21a6b8e1 Mon Sep 17 00:00:00 2001
From: jmoellers <josef.moellers@suse.com>
Date: Fri, 7 Sep 2018 13:55:35 +0200
Subject: [PATCH 3/3] One more free() to avoid memory leak.

(cherry picked from commit 0e1dadb05c1473b9df2d7b8f298dab801778ef99)
https://github.com/gdraheim/zziplib/commit/0e1dadb05c1473b9df2d7b8f298dab801778ef99
Signed-off-by: Yufa Fang <fangyufa1@huawei.com>
---
 zzip/zip.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/zzip/zip.c b/zzip/zip.c
index 79fd9ad..f97a40a 100644
--- a/zzip/zip.c
+++ b/zzip/zip.c
@@ -586,6 +586,8 @@ __zzip_parse_root_directory(int fd,
 	    free(hdr0);
 	}
     }                           /* else zero (sane) entries */
+    else
+        free(hdr0);
 #  ifndef ZZIP_ALLOW_MODULO_ENTRIES
     return (entries != zz_entries) ? ZZIP_CORRUPTED : 0;
 #  else
-- 
2.19.1
Package init 2019-12-25 16:11:23 +08:00			`From a37ce0d441050356efc5fcaa48e1cdcf21a6b8e1 Mon Sep 17 00:00:00 2001`
			`From: jmoellers <josef.moellers@suse.com>`
			`Date: Fri, 7 Sep 2018 13:55:35 +0200`
			`Subject: [PATCH 3/3] One more free() to avoid memory leak.`

			`(cherry picked from commit 0e1dadb05c1473b9df2d7b8f298dab801778ef99)`
			`https://github.com/gdraheim/zziplib/commit/0e1dadb05c1473b9df2d7b8f298dab801778ef99`
			`Signed-off-by: Yufa Fang <fangyufa1@huawei.com>`
			`---`
			`zzip/zip.c \| 2 ++`
			`1 file changed, 2 insertions(+)`

			`diff --git a/zzip/zip.c b/zzip/zip.c`
			`index 79fd9ad..f97a40a 100644`
			`--- a/zzip/zip.c`
			`+++ b/zzip/zip.c`
			`@@ -586,6 +586,8 @@ __zzip_parse_root_directory(int fd,`
			`free(hdr0);`
			`}`
			`} /* else zero (sane) entries */`
			`+ else`
			`+ free(hdr0);`
			`# ifndef ZZIP_ALLOW_MODULO_ENTRIES`
			`return (entries != zz_entries) ? ZZIP_CORRUPTED : 0;`
			`# else`
			`--`
			`2.19.1`