From 828d9ca10a14650191d1f0b9efe06892f7459546 Mon Sep 17 00:00:00 2001
From: visa <visa@openbsd.org>
Date: Sat, 23 Oct 2021 15:00:11 +0000
Subject: [PATCH] Fix double free after allocation failure in bpf(4).

Reported by Peter J. Philipp.

OK mpi@
---
 sys/net/bpf.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/sys/net/bpf.c b/sys/net/bpf.c
index 2c4a2a86447..87a9d726423 100644
--- a/sys/net/bpf.c
+++ b/sys/net/bpf.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: bpf.c,v 1.205 2021/06/15 05:24:47 dlg Exp $	*/
+/*	$OpenBSD: bpf.c,v 1.206 2021/10/23 15:00:11 visa Exp $	*/
 /*	$NetBSD: bpf.c,v 1.33 1997/02/21 23:59:35 thorpej Exp $	*/
 
 /*
@@ -1553,6 +1553,7 @@ bpf_allocbufs(struct bpf_d *d)
 	d->bd_sbuf = malloc(d->bd_bufsize, M_DEVBUF, M_NOWAIT);
 	if (d->bd_sbuf == NULL) {
 		free(d->bd_fbuf, M_DEVBUF, d->bd_bufsize);
+		d->bd_fbuf = NULL;
 		return (ENOMEM);
 	}
 
-- 
2.20.1