Heap Damage in C

Question

Heap Damage in C

int main ()
{
    int * b;
    b = (int*) malloc (1);
    *b=110000;
    free (b);
    return 0;
}

Why does a bunch happen when free (b);?

IMO, heap damage already occurs at *b=110000;.

+3

c heap-corruption

Alan Oct 13 '10 at 11:51

source share

4 answers

* b = 110000; , int , . b = (int *) malloc (sizeof (int)), int * b char * b, malloced char *. , , 128 (- char) * b.

EDIT: - , - . .

+5

Manoj R 13 . '10 11:56

*b=11000, free(b), , .

( ) , . , malloc free ( ).

+4

Bart van Ingen Schenau 13 . '10 12:09

, , , .

char *, int *, -128 127 * b .

0

VHampiholi 13 . '10 12:48

Ned batchelder · Accepted Answer · 2010-10-13T11:54:05+0000

malloc()An argument is the number of bytes to place. You need to use:

b = (int*) malloc(sizeof(int));

You allocated a block too small, and then wrote more bytes than you allocated, which overwrites the accounting information next to the block, corrupting the heap.

Heap Damage in C

More articles: