processor: Fix a potential use-after-free Make sure that the raw pointer to descendents_uuids is reset when the owned vector is freed. Bug: oss-fuzz:21908 Change-Id: I85e35e78dc20e2e2482e376f8a69a0417852dcc1

commit: 03fcfdd74f97bb8b055fa4e47cd03203568a238e [log] [tgz]
author: Eric Seckler <eseckler@google.com> Tue Apr 28 11:54:58 2020 +0100
committer: Eric Seckler <eseckler@google.com> Tue Apr 28 11:54:58 2020 +0100
tree: 96f7c80a1803872b6fb9a50686b8c07c61f8545c
parent: bed1eba707ac8fa4ed5486a70afd3c16ff7e6993 [diff]
diff --git a/src/trace_processor/importers/common/track_tracker.cc b/src/trace_processor/importers/common/track_tracker.cc
index 6fffbdb..d4e357f 100644
--- a/src/trace_processor/importers/common/track_tracker.cc
+++ b/src/trace_processor/importers/common/track_tracker.cc

@@ -362,6 +362,8 @@
     }
 
     descendent_uuids->pop_back();
+    if (owned_descendent_uuids)
+      descendent_uuids = nullptr;
   }
 
   if (reservation.tid) {
commit	03fcfdd74f97bb8b055fa4e47cd03203568a238e	[log] [tgz]
author	Eric Seckler <eseckler@google.com>	Tue Apr 28 11:54:58 2020 +0100
committer	Eric Seckler <eseckler@google.com>	Tue Apr 28 11:54:58 2020 +0100
tree	96f7c80a1803872b6fb9a50686b8c07c61f8545c
parent	bed1eba707ac8fa4ed5486a70afd3c16ff7e6993 [diff]