patch 9.1.0764: [security]: use-after-free when closing a buffer Problem: [security]: use-after-free when closing a buffer Solution: When splitting the window and editing a new buffer, check whether the newly to be edited buffer has been marked for deletion and abort in this case Github Advisory: https://github.com/vim/vim/security/advisories/GHSA-rj48-v4mq-j4vg Signed-off-by: Christian Brabandt <cb@256bit.org>

commit: 51b62387be93c65fa56bbabe1c3c1ea5df187641 [log] [tgz]
author: Christian Brabandt <cb@256bit.org> Sun Oct 06 17:31:10 2024 +0200
committer: Christian Brabandt <cb@256bit.org> Sun Oct 06 17:36:31 2024 +0200
tree: 7201c63085dac1cc24b07d3e67a0040b4abd6858
parent: 818c641b6fac73b574a2b760213f515cee9a3c8e [diff] [blame]
diff --git a/src/buffer.c b/src/buffer.c
index 34500e4..90be301 100644
--- a/src/buffer.c
+++ b/src/buffer.c

@@ -497,6 +497,12 @@
     return can_unload;
 }
 
+    int
+buf_locked(buf_T *buf)
+{
+    return buf->b_locked || buf->b_locked_split;
+}
+
 /*
  * Close the link to a buffer.
  * "action" is used when there is no longer a window for the buffer.
commit	51b62387be93c65fa56bbabe1c3c1ea5df187641	[log] [tgz]
author	Christian Brabandt <cb@256bit.org>	Sun Oct 06 17:31:10 2024 +0200
committer	Christian Brabandt <cb@256bit.org>	Sun Oct 06 17:36:31 2024 +0200
tree	7201c63085dac1cc24b07d3e67a0040b4abd6858
parent	818c641b6fac73b574a2b760213f515cee9a3c8e [diff] [blame]