BR3079550: NASM crash on run-time for OMF output format

We could have accessed malloc'ed data on external symbols in obj and ieee output formats. Fix it by using nasm_zalloc. Reported-by: Jiri Malak Patch-by: Jiri Malak Signed-off-by: Cyrill Gorcunov <gorcunov@gmail.com>
2025-09-22 10:43:39 -04:00 · 2010-10-02 01:21:00 +04:00
parent 71787fda1b
commit 2c157002f2
2 changed files with 4 additions and 4 deletions
--- a/output/outieee.c
+++ b/output/outieee.c
@@ -372,7 +372,7 @@ static void ieee_deflabel(char *name, int32_t segment,
        i = segment / 2;
        eb = ebhead;
        if (!eb) {
-            eb = *ebtail = nasm_malloc(sizeof(*eb));
+            eb = *ebtail = nasm_zalloc(sizeof(*eb));
            eb->next = NULL;
            ebtail = &eb->next;
        }
@@ -380,7 +380,7 @@ static void ieee_deflabel(char *name, int32_t segment,
            if (eb && eb->next)
                eb = eb->next;
            else {
-                eb = *ebtail = nasm_malloc(sizeof(*eb));
+                eb = *ebtail = nasm_zalloc(sizeof(*eb));
                eb->next = NULL;
                ebtail = &eb->next;
            }
--- a/output/outobj.c
+++ b/output/outobj.c
@@ -993,7 +993,7 @@ static void obj_deflabel(char *name, int32_t segment,
    i = segment / 2;
    eb = ebhead;
    if (!eb) {
-        eb = *ebtail = nasm_malloc(sizeof(*eb));
+        eb = *ebtail = nasm_zalloc(sizeof(*eb));
        eb->next = NULL;
        ebtail = &eb->next;
    }
@@ -1001,7 +1001,7 @@ static void obj_deflabel(char *name, int32_t segment,
        if (eb && eb->next)
            eb = eb->next;
        else {
-            eb = *ebtail = nasm_malloc(sizeof(*eb));
+            eb = *ebtail = nasm_zalloc(sizeof(*eb));
            eb->next = NULL;
            ebtail = &eb->next;
        }