Package: watchdog Version: 5.16-1+b1 Severity: normal -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
Since 5.16 was released, upstream Git has had two new commits. Of these two, one fixes a memory leak in realloc(): Coverity report shows a memory leak in watchdog-5.16/src/run-as-child.c:102 with `realloc()` call. Issue is that realloc may return `NULL` when there is an error causing `opt` to be a null pointer and losing the pointer to the memory that was allocated by `strdup()` or reallocated by `realloc()`. Steps to Reproduce: 1. watchdog needs to be run with the verbose flag 2. watchdog needs to receive test/repair arguments of sufficient length to cause a ENOMEM or another error that may be triggered by realloc Patch courtesy of Josef Ridky, RedHat <https://sourceforge.net/p/watchdog/code/ci/20011eaf7c67345c11db197b89a6616436b95df7/> - -- System Information: Debian Release: 11.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable-debug'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 5.10.0-16-amd64 (SMP w/4 CPU threads) Locale: LANG=fi_FI.utf8, LC_CTYPE=fi_FI.utf8 (charmap=UTF-8), LANGUAGE=fi:en Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages watchdog depends on: ii debconf [debconf-2.0] 1.5.77 ii libc6 2.31-13+deb11u3 ii lsb-base 11.1.0 ii udev 247.3-7 watchdog recommends no packages. watchdog suggests no packages. - -- debconf information: watchdog/run_keepalive: true watchdog/restart: false watchdog/run: true watchdog/module: none -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEyJACx3qL7GpObXOQrh+Cd8S017YFAmLiNBEACgkQrh+Cd8S0 17bMLg//ckYKua6M8aJuaTDwq9tCXbut8q1CkmGG6Q6Feiu1VAmfaj75GGcYQ8f/ tQjteniI596lQh6xAZmExl11LmEaSkVkbvkjINdP0/5nkIvjDWZj1QLYq97h4uSe jWWFNS2P1Gq8bMSJOPrnUNEEOsd1sB4q89x+wCI5qIi9q86Yz1+mhiQ3+1Fvavm9 xZrQEcR54vGxK+67aXwZxIQ13xlJyMXHOet6I+Bnhn63j4xluKK4IthqtdSLZU0S ly0ocgG74Z87L/bkoI8tE++6CPwc5f4OCD+hk37vECcknirvgtxRzEi3H3VhtTWY awMPWw9si0WoOqaA4MZpBynBAsL6WuE9bMhYC0KPbeF9tEhLFztHUV4hgp3vAUCC BuC7WzUWLBb3d7X54USyBK6DmdUUw8w6tynoZamGwUSPst7ZYew04cUnhInt7apk oCSaN6m/2yK5zJTl2DmJ4urbx3G5A+f5Z5TSX8uVFM9jpt/1snm2TKNUy9LdK6oX Dm4HS+Pf28W0ixxc0KDXDAeZWWzIG41qfzWjWnMixTWUhOUwKpulzWpm50rFIXQ3 qJn/FD07+PRKJbH9z+7Ba1Me6nUhEpxruiEV8oA9Jy8OtMCysV7LOC2apr3+fiZs 3aJlPw9nlFYM0k+IAELu38WFsJUpxtL28tkS8DKCraTy4UPmENQ= =AL2v -----END PGP SIGNATURE-----
