From 6a2ff420e12211785683f3674fee968893144696 Mon Sep 17 00:00:00 2001 From: David Vossel Date: Fri, 17 Jan 2014 11:22:24 -0600 Subject: [PATCH] High: ipcs: Prevent ipc server use after free. The ipc server registers the bind socket to the poll loop in order to be alerted to new connection requests. Upon shutdown, the ipc server does not remove this poll entry. This patch fixes this use after free. --- lib/ipc_setup.c | 1 + 1 file changed, 1 insertion(+) diff --git a/lib/ipc_setup.c b/lib/ipc_setup.c index 3c22e6f..fc3ce5b 100644 --- a/lib/ipc_setup.c +++ b/lib/ipc_setup.c @@ -431,6 +431,7 @@ int32_t qb_ipcs_us_withdraw(struct qb_ipcs_service * s) { qb_util_log(LOG_INFO, "withdrawing server sockets"); + s->poll_fns.dispatch_del(s->server_sock); shutdown(s->server_sock, SHUT_RDWR); close(s->server_sock); return 0; -- 1.8.4.2