Fix double free after allocation failure in bpf(4).

author visa <visa@openbsd.org>

Sat, 23 Oct 2021 15:00:11 +0000 (15:00 +0000)

committer visa <visa@openbsd.org>

Sat, 23 Oct 2021 15:00:11 +0000 (15:00 +0000)
author visa <visa@openbsd.org>
Sat, 23 Oct 2021 15:00:11 +0000 (15:00 +0000)
committer visa <visa@openbsd.org>
Sat, 23 Oct 2021 15:00:11 +0000 (15:00 +0000)
diff --git a/sys/net/bpf.c b/sys/net/bpf.c

index 2c4a2a8..87a9d72 100644 (file)
--- a/sys/net/bpf.c
+++ b/sys/net/bpf.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: bpf.c,v 1.205 2021/06/15 05:24:47 dlg Exp $   */
+/*     $OpenBSD: bpf.c,v 1.206 2021/10/23 15:00:11 visa Exp $  */
  /*     $NetBSD: bpf.c,v 1.33 1997/02/21 23:59:35 thorpej Exp $ */
  
  /*
@@ -1553,6 +1553,7 @@ bpf_allocbufs(struct bpf_d *d)
         d->bd_sbuf = malloc(d->bd_bufsize, M_DEVBUF, M_NOWAIT);
         if (d->bd_sbuf == NULL) {
                 free(d->bd_fbuf, M_DEVBUF, d->bd_bufsize);
+               d->bd_fbuf = NULL;
                 return (ENOMEM);
         }
author	visa <visa@openbsd.org>
	Sat, 23 Oct 2021 15:00:11 +0000 (15:00 +0000)
committer	visa <visa@openbsd.org>
	Sat, 23 Oct 2021 15:00:11 +0000 (15:00 +0000)