From c99837f5874c0983e0bcb1d2704c241d4a2aa10d Mon Sep 17 00:00:00 2001
From: Esa Peuha <esa.peuha@gmail.com>
Date: Sat, 27 Feb 2016 09:59:13 +0200
Subject: [PATCH] Fix use-after-free in libps.

* libps/fmt.c (_fmt_create): Free new_fmt->src before new_fmt
if reallocating fields fails.
---
 libps/fmt.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libps/fmt.c b/libps/fmt.c
index 580b097..f914212 100644
--- a/libps/fmt.c
+++ b/libps/fmt.c
@@ -80,8 +80,8 @@ _fmt_create (char *src, int posix, struct ps_fmt_specs *fmt_specs,
 
 	  if (fields == NULL)
 	    {
-	      FREE (new_fmt);
 	      FREE (new_fmt->src);
+	      FREE (new_fmt);
 	      return ENOMEM;
 	    }
 
-- 
2.7.0