Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-18086

canonical_query_test helper parseNormalize() keeps pointers to memory inside freed BSONObj

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 3.1.5
    • Affects Version/s: None
    • Component/s: Querying
    • Fully Compatible
    • ALL
    • Quint Iteration 5

      The parseNormalize() helper in canonical_query_test.cpp returns a MatchExpression created from a temporary BSONObj, which is not valid.

      Note that the tests in this file happen to not examine the BSONElement members of the returned MatchExpression objects (which is how this issue went undetected).

            Assignee:
            qingyang.chen Qingyang Chen
            Reporter:
            rassi J Rassi
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: