[PATCH 0/1] MR1656: user32: Avoid freeing invalid pointers in WIN_CreateWindowEx. - Wine-gitlab - list.winehq.org

newer
[PATCH 0/1] MR1657:...

[PATCH 0/1] MR1656: user32: Avoid freeing invalid pointers in WIN_CreateWindowEx.

older
[PATCH 0/1] MR1655: inetcomm:...

Rémi Bernon

2 Dec 2022 2 Dec '22

8:06 a.m.

When `lpszName` is NULL or when it is a resource ID we are possibly freeing uninitialized or stack pointer. -- https://gitlab.winehq.org/wine/wine/-/merge_requests/1656

Reply

Sign in to reply online Use email software

Show replies by date

Rémi Bernon

2 Dec 2 Dec

8:06 a.m.

New subject: [PATCH 1/1] user32: Avoid freeing invalid pointers in WIN_CreateWindowEx.

From: Rémi Bernon <rbernon(a)codeweavers.com> --- dlls/user32/win.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/dlls/user32/win.c b/dlls/user32/win.c index a6f43c188c4..d8869b2b9db 100644 --- a/dlls/user32/win.c +++ b/dlls/user32/win.c @@ -278,7 +278,7 @@ static BOOL is_default_coord( int x ) */ HWND WIN_CreateWindowEx( CREATESTRUCTW *cs, LPCWSTR className, HINSTANCE module, BOOL unicode ) { - UNICODE_STRING class, window_name; + UNICODE_STRING class, window_name = {0}; HWND hwnd, top_child = 0; MDICREATESTRUCTW mdi_cs; WNDCLASSEXW info; @@ -401,7 +401,7 @@ HWND WIN_CreateWindowEx( CREATESTRUCTW *cs, LPCWSTR className, HINSTANCE module, cs->x, cs->y, cs->cx, cs->cy, cs->hwndParent, menu, module, cs->lpCreateParams, 0, NULL, 0, !unicode ); if (!hwnd && menu && menu != cs->hMenu) NtUserDestroyMenu( menu ); - if (!unicode) RtlFreeUnicodeString( &window_name ); + if (!unicode && window_name.Buffer != name_buf) RtlFreeUnicodeString( &window_name ); return hwnd; } -- GitLab https://gitlab.winehq.org/wine/wine/-/merge_requests/1656

Reply

Sign in to reply online Use email software

1189

Age (days ago)

1189

Last active (days ago)

Download

1 comments

1 participants

tags

participants (1)

Rémi Bernon