From 21c6b94373d239d7e86bd480fcd558e30391712f Mon Sep 17 00:00:00 2001 From: Lasse Collin Date: Tue, 28 Apr 2009 23:08:32 +0300 Subject: Fixed a crash in liblzma. liblzma tries to avoid useless free()/malloc() pairs in initialization when multiple files are handled using the same lzma_stream. This didn't work with filter chains due to comparison of wrong pointers in lzma_next_coder_init(), making liblzma think that no memory reallocation is needed even when it actually is. Easy way to trigger this bug is to decompress two files with a single xz command. The first file should have e.g. x86+LZMA2 as the filter chain, and the second file just LZMA2. --- src/liblzma/common/stream_encoder.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src/liblzma/common/stream_encoder.c') diff --git a/src/liblzma/common/stream_encoder.c b/src/liblzma/common/stream_encoder.c index 6303b44a..292efc82 100644 --- a/src/liblzma/common/stream_encoder.c +++ b/src/liblzma/common/stream_encoder.c @@ -211,7 +211,7 @@ extern lzma_ret lzma_stream_encoder_init(lzma_next_coder *next, lzma_allocator *allocator, const lzma_filter *filters, lzma_check check) { - lzma_next_coder_init(lzma_stream_encoder_init, next, allocator); + lzma_next_coder_init(&lzma_stream_encoder_init, next, allocator); if (filters == NULL) return LZMA_PROG_ERROR; -- cgit v1.2.3