Hi, Please find the latest report on new defect(s) introduced to libvirt found with Coverity Scan. 2 new defect(s) introduced to libvirt found with Coverity Scan. New defect(s) Reported-by: Coverity Scan Showing 2 of 2 defect(s) ** CID 405907: Insecure data handling (TAINTED_STRING) ________________________________________________________________________________________________________ *** CID 405907: Insecure data handling (TAINTED_STRING) /tests/viracpitest.c: 135 in main() 129 VIR_IORT_NODE_TYPE_SMMUV3, 130 VIR_IORT_NODE_TYPE_PMCG); 131 132 return ret == 0 ? EXIT_SUCCESS : EXIT_FAILURE; 133 } 134
CID 405907: Insecure data handling (TAINTED_STRING) Passing tainted string "**argv" to "virTestMain", which cannot accept tainted data.
** CID 405906: Insecure data handling (TAINTED_SCALAR) ________________________________________________________________________________________________________ *** CID 405906: Insecure data handling (TAINTED_SCALAR) /src/util/viracpi.c: 190 in virAcpiParseIORT() 184 185 VIR_DEBUG("IORT header: len = %" PRIu32 " revision = %" PRIu8 186 " nnodes = %" PRIu32 " OEM = %s", 187 header.length, header.revision, 188 header.nnodes, header.oem_id); 189
CID 405906: Insecure data handling (TAINTED_SCALAR) Passing tainted expression "header.length" to "virAcpiParseIORTNodes", which uses it as a loop boundary.
190 return virAcpiParseIORTNodes(fd, filename, &header, nodesRet); 191 } 192 193 194 #define IORT_PATH "/sys/firmware/acpi/tables/IORT" 195
________________________________________________________________________________________________________ To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0...