patch 9.1.0992: Vim9: double-free after v9.1.0988 Problem: Vim9: double-free after v9.1.0988 (h-east) Solution: clear typval pointer, before setting the type (Yegappan Lakshmanan) Otherwise the contents are still referring to some other value. fixes: #16386 closes: #16388 Signed-off-by: Yegappan Lakshmanan <yegappan@yahoo.com> Signed-off-by: Christian Brabandt <cb@256bit.org>

commit: 2050dcc20f99b3440199f4fbe60581e2ad8dac97 [log] [tgz]
author: Yegappan Lakshmanan <yegappan@yahoo.com> Mon Jan 06 18:34:49 2025 +0100
committer: Christian Brabandt <cb@256bit.org> Mon Jan 06 18:34:49 2025 +0100
tree: 410e655fae6151623bfb3c03bb42aa1804858de2
parent: 6655bef33047b826e0ccb8c686f3f57e47161b1c [diff] [blame]
diff --git a/src/vim9execute.c b/src/vim9execute.c
index dde95b5..d696280 100644
--- a/src/vim9execute.c
+++ b/src/vim9execute.c

@@ -4855,6 +4855,7 @@
 					+ iptr->isn_arg.jumparg.jump_arg_off
 					+ STACK_FRAME_SIZE;
 		    type_T *t = ufunc->uf_arg_types[argidx];
+		    CLEAR_POINTER(tv);
 		    tv->v_type = t->tt_type;
 		}
commit	2050dcc20f99b3440199f4fbe60581e2ad8dac97	[log] [tgz]
author	Yegappan Lakshmanan <yegappan@yahoo.com>	Mon Jan 06 18:34:49 2025 +0100
committer	Christian Brabandt <cb@256bit.org>	Mon Jan 06 18:34:49 2025 +0100
tree	410e655fae6151623bfb3c03bb42aa1804858de2
parent	6655bef33047b826e0ccb8c686f3f57e47161b1c [diff] [blame]