atom_parser.c: memory allocation and freeing bugs #95
Description
atom_parser.c has some bugs in memory allocation and deallocation paths:
1) It uses malloc(x * y) instead of calloc(x, y) without overflow checking;
2) It uses assign instead of strdup() in a few places, leading to double free.
The patch below fixes (at least some) issues found on OpenBSD.
Original issue reported on code.google.com by persgray@gmail.com on 9 Jul 2014 at 10:47
Attachments: