Security flaw, access of freed memory

First of all, I don't use this package so I won't participate further, just want to let you know.

While [investigating](https://github.com/dominictarr/event-stream/issues/115#issuecomment-441854646) a bit of the `event-stream` "issue", I found that the guy who stole bitcoin wallets for a few months had a "fork" (non github fork) of node-scrypt, made a change to unsafe code in this package.

[scrypt_common.cc](https://github.com/barrysteyn/node-scrypt/blob/master/src/node-boilerplate/scrypt_common.cc#L98):
```c++
std::string scrypt_err_description = InternalErrorDescr(base_error);
...
return scrypt_err_description.c_str();
```

You're returning a pointer to freed memory. Or rather, to _potentially_ freed memory. `std::string` has a lot of different and clever implementations of re-using memory, so having references to data which "look" freed is not just entirely broken, but a security issue. Could potentially be exploited to execute arbitrary code (e.g. if a string can overwrite what will eventually end up in a system call).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Security flaw, access of freed memory #185

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Security flaw, access of freed memory #185

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions