From 790bd4d5858713e8503825892c7d08340d189370 Mon Sep 17 00:00:00 2001
From: zeertzjq <zeertzjq@outlook.com>
Date: Fri, 17 Nov 2023 09:47:04 +0800
Subject: vim-patch:9.0.2106: [security]: Use-after-free in win_close()

Problem:  [security]: Use-after-free in win_close()
Solution: Check window is valid, before accessing it

If the current window structure is no longer valid (because a previous
autocommand has already freed this window), fail and return before
attempting to set win->w_closing variable.

Add a test to trigger ASAN in CI

https://github.com/vim/vim/commit/25aabc2b8ee1e19ced6f4da9d866cf9378fc4c5a

Co-authored-by: Christian Brabandt <cb@256bit.org>
---
 test/old/testdir/crash/poc_huaf2 | Bin 0 -> 3238 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 test/old/testdir/crash/poc_huaf2

(limited to 'test/old/testdir/crash/poc_huaf2')

diff --git a/test/old/testdir/crash/poc_huaf2 b/test/old/testdir/crash/poc_huaf2
new file mode 100644
index 0000000000..4867e0f956
Binary files /dev/null and b/test/old/testdir/crash/poc_huaf2 differ
-- 
cgit