Sending packets to deallocated cClientHandle
#1
Server can send packets to a cClientHandle that no longer exists, a dangling pointer.

It happens in cChunk::Broadcast, but it crashes somewhere deeper in the stack.

[Image: Screenshot-2012-03-17_11.57.53.png]

Something to note is that the server was updating .pak files from version 2 to 3. A client disconnected somewhere in the middle of conversion (thought it has a different address than the dangling pointer), and the server crashes after conversion was done.

Simply put, cChunk had a dangling pointer in m_LoadedByClient
Reply
Thanks given by:


Messages In This Thread
Sending packets to deallocated cClientHandle - by FakeTruth - 03-17-2012, 09:00 PM



Users browsing this thread: 4 Guest(s)