[Debian-med-packaging] Bug#1080071: abyss: A suspicious memory leak in 'dialign/museq.c'
r10922044
r10922044 at ntu.edu.tw
Fri Aug 30 10:06:41 BST 2024
Package: abyss
Version: 2.3.8-1
Dear Maintainers,
We are researching static analysis for recurring vulnerabilities. When
using our tool to test on 'abyss', we found a suspicious memory-leak bug
at 'main' in 'dialign/museq.c'. The memory that 'salgn' in line 155
points to, allocated in line 48 of 'dialign/alig.c', would not be freed
before 'exit' in line 313. We suggest adding a function to deallocate
memory before exit.
Thank you for maintaining abyss.
Best regards
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-med-packaging/attachments/20240830/54f0d710/attachment-0001.htm>
More information about the Debian-med-packaging
mailing list