| 제목 | nnn v5.1 Double Free |
|---|
| 설명 | The code contains a double-free vulnerability in the show_content_in_floating_window function. If the newwin() call fails (returns NULL), the function explicitly frees the content buffer before returning FALSE. However, the caller function also attempts to free the same content pointer unconditionally after the function returns(the return value is false, the loop will exit). This results in the same memory region being freed twice, which can lead to memory corruption or a program crash. |
|---|
| 원천 | ⚠️ https://github.com/jarun/nnn/issues/2091#issue-3635886658 |
|---|
| 사용자 | micromilo (UID 84159) |
|---|
| 제출 | 2025. 11. 19. PM 03:19 (5 개월 ago) |
|---|
| 모더레이션 | 2025. 11. 22. PM 06:38 (3 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 333330 [jarun nnn 까지 5.1 nnn/src/nnn.c show_content_in_floating_window/run_cmd_as_plugin 메모리 손상] |
|---|
| 포인트들 | 19 |
|---|