Fixed a possible access violation in WApplication::UpdateLock

skoehler47 · skoehler47 · commit ddc4cf0fc0e4 · 2022-07-07T15:48:12.000+02:00
diff --git a/src/Wt/WApplication.C b/src/Wt/WApplication.C
@@ -1470,6 +1470,14 @@ WApplication::UpdateLock::UpdateLock(WApplication *app)
 #ifndef WT_THREADED
   return;
 #else
+
+  // check if 'app' is a nullptr to prevent an access violation
+  // in the following code
+  if (!app) {
+    ok_ = false;
+    return;
+  }
+
   /*
    * If we are already handling this application, then we already have
    * exclusive access, unless we are not having the lock (e.g. from a
@@ -1498,7 +1506,7 @@ WApplication::UpdateLock::UpdateLock(WApplication *app)
   WebSession::Handler *handler = WebSession::Handler::instance();
 
   createdHandler_ = false;
-  if (handler && handler->haveLock() && handler->session() == app->session_)
+  if (app && handler && handler->haveLock() && handler->session() == app->session_)
     return;
 
   new WebSession::Handler(app->session_, WebSession::Handler::LockOption::TakeLock);
