mirrors-yuzu-emu/unicorn
1
0
Fork 0
mirror of https://github.com/yuzu-emu/unicorn synced 2024-11-24 09:18:32 +00:00
Code Issues Projects Releases Packages Wiki Activity

memory: Protect against use-after-free

Browse source
This commit is contained in:
Lioncash 2018-03-21 09:40:33 -04:00
parent 309b85548f
commit 43fe0c8a1c
No known key found for this signature in database
GPG key ID: 4E3C3CC1031BA9C7
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
qemu/memory.c
View file

@ -97,6 +97,7 @@ void memory_unmap(struct uc_struct *uc, MemoryRegion *mr)
//shift remainder of array down over deleted pointer //shift remainder of array down over deleted pointer
memmove(&uc->mapped_blocks[i], &uc->mapped_blocks[i + 1], sizeof(MemoryRegion*) * (uc->mapped_block_count - i)); memmove(&uc->mapped_blocks[i], &uc->mapped_blocks[i + 1], sizeof(MemoryRegion*) * (uc->mapped_block_count - i));
mr->destructor(mr); mr->destructor(mr);
mr->ram_block = NULL;
obj = OBJECT(mr); obj = OBJECT(mr);
obj->ref = 1; obj->ref = 1;
obj->free = g_free; obj->free = g_free;
@ -119,6 +120,7 @@ int memory_free(struct uc_struct *uc)
mr->enabled = false; mr->enabled = false;
memory_region_del_subregion(get_system_memory(uc), mr); memory_region_del_subregion(get_system_memory(uc), mr);
mr->destructor(mr); mr->destructor(mr);
mr->ram_block = NULL;
obj = OBJECT(mr); obj = OBJECT(mr);
obj->ref = 1; obj->ref = 1;
obj->free = g_free; obj->free = g_free;