[SERVER-80499] Fix use-after-free in planShardedSearch Created: 29/Aug/23 Updated: 29/Oct/23 Resolved: 31/Aug/23 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 4.4.25, 5.0.22 |
| Type: | Bug | Priority: | Critical - P2 |
| Reporter: | Vojislav Stojkovic | Assignee: | Maddie Zechar |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||||||||||||||
| Operating System: | ALL | ||||||||||||||||||||
| Steps To Reproduce: | The affected customer is experiencing crashes due to this bug when the client disconnects while running the search query. Also, as shown in the HELP ticket, the use-after-free can be reproduced under ASAN by modifying the source code to mark the operation as killed right before calling TaskExecutor::wait. |
||||||||||||||||||||
| Sprint: | QI 2023-09-04 | ||||||||||||||||||||
| Participants: | |||||||||||||||||||||
| Case: | (copied to CRM) | ||||||||||||||||||||
| Comments |
| Comment by Benjamin Capellaro [ 30/Aug/23 ] |
|
Hello team, Thank you for an update on this case. Benjamin |