From 992349e48ab8e261733898f1b4d2db7c3c56649f Mon Sep 17 00:00:00 2001 From: Kuang-che Wu Date: Sun, 30 Mar 2025 16:02:56 +0000 Subject: [PATCH] fix memory leak in read_foreign_testcases --- src/afl-fuzz-init.c | 11 +++++------ 1 file changed, 5 insertions(+), 6 deletions(-) diff --git a/src/afl-fuzz-init.c b/src/afl-fuzz-init.c index d8e7169d..4add1b5a 100644 --- a/src/afl-fuzz-init.c +++ b/src/afl-fuzz-init.c @@ -567,6 +567,7 @@ void read_foreign_testcases(afl_state_t *afl, int first) { } + free(nl); continue; } @@ -593,6 +594,7 @@ void read_foreign_testcases(afl_state_t *afl, int first) { if (unlikely(lstat(fn2, &st) || access(fn2, R_OK))) { if (first) PFATAL("Unable to access '%s'", fn2); + ck_free(fn2); continue; } @@ -634,19 +636,16 @@ void read_foreign_testcases(afl_state_t *afl, int first) { // as this could add duplicates of the startup input corpus int fd = open(fn2, O_RDONLY); - if (fd < 0) { + ck_free(fn2); - ck_free(fn2); - continue; - - } + if (fd < 0) { continue; } u8 fault; u8 *mem = mmap(0, st.st_size, PROT_READ, MAP_PRIVATE, fd, 0); if (mem == MAP_FAILED) { - ck_free(fn2); + close(fd); continue; }