From 31a4559641eef435cc4db7939eaeeb872bc584b0 Mon Sep 17 00:00:00 2001
From: shixuantong <shixuantong1@huawei.com>
Date: Tue, 9 Dec 2025 11:39:43 +0800
Subject: [PATCH] fix potential use-after-free bugs in libxalarm

---
 ...ial-use-after-free-bugs-in-libxalarm.patch | 24 +++++++++++++++++++
 sysSentry.spec                                |  9 ++++++-
 2 files changed, 32 insertions(+), 1 deletion(-)
 create mode 100644 fix-potential-use-after-free-bugs-in-libxalarm.patch

diff --git a/fix-potential-use-after-free-bugs-in-libxalarm.patch b/fix-potential-use-after-free-bugs-in-libxalarm.patch
new file mode 100644
index 0000000..d78317e
--- /dev/null
+++ b/fix-potential-use-after-free-bugs-in-libxalarm.patch
@@ -0,0 +1,24 @@
+From 37c606446a45fedd08ff3782e0185552f8f34dec Mon Sep 17 00:00:00 2001
+From: shixuantong <shixuantong1@huawei.com>
+Date: Tue, 9 Dec 2025 11:15:22 +0800
+Subject: [PATCH] fix potential use-after-free bugs in libxalarm
+
+---
+ src/libs/libxalarm/register_xalarm.c | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/src/libs/libxalarm/register_xalarm.c b/src/libs/libxalarm/register_xalarm.c
+index 13584cb..0309ae6 100644
+--- a/src/libs/libxalarm/register_xalarm.c
++++ b/src/libs/libxalarm/register_xalarm.c
+@@ -676,6 +676,7 @@ int xalarm_register_event(struct alarm_register **register_info, struct alarm_su
+     (*register_info)->register_fd = create_unix_socket(PATH_REG_ALARM);
+     if ((*register_info)->register_fd == -1) {
+         free(*register_info);
++        *register_info = NULL;
+         return -ENOTCONN;
+     }
+ 
+-- 
+2.27.0
+
diff --git a/sysSentry.spec b/sysSentry.spec
index 31e765c..b7ab055 100644
--- a/sysSentry.spec
+++ b/sysSentry.spec
@@ -4,7 +4,7 @@
 Summary: System Inspection Framework
 Name: sysSentry
 Version: 1.0.3
-Release: 18
+Release: 19
 License: Mulan PSL v2
 Group: System Environment/Daemons
 Source0: https://gitee.com/openeuler/sysSentry/releases/download/v%{version}/%{name}-%{version}.tar.gz
@@ -59,6 +59,7 @@ Patch47:   add-API-to-enable-disable-the-hijacking-function-for.patch
 Patch48:   build-sentry_msg_monitor-only-under-aarch64-architec.patch
 Patch49:   fix-syntar-in-sentryctl.patch
 Patch50:   add-task_pre-and-task_post-for-task-mod-setting.patch
+Patch51:   fix-potential-use-after-free-bugs-in-libxalarm.patch
 
 BuildRequires: cmake gcc-c++
 BuildRequires: python3 python3-setuptools
@@ -316,6 +317,12 @@ rm -rf /var/run/sysSentry | :
 %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/sysSentry/tasks/soc_ring_sentry.mod
 
 %changelog
+* Tue Dec 09 2025 shixuantong <shixuantong1@h-partners.com> - 1.0.3-19
+- Type:bugfix
+- CVE:NA
+- SUG:NA
+- DESC:fix potential use-after-free bugs in libxalarm
+
 * Wed Dec 03 2025 shixuantong <shixuantong1@h-partners.com> - 1.0.3-18
 - Type:bugfix
 - CVE:NA
-- 
Gitee