12:42 a.m.
Hi,
Please find the latest report on new defect(s) introduced to libvirt found with Coverity
Scan.
2 new defect(s) introduced to libvirt found with Coverity Scan.
New defect(s) Reported-by: Coverity Scan
Showing 2 of 2 defect(s)
** CID 405907: Insecure data handling (TAINTED_STRING)
________________________________________________________________________________________________________
*** CID 405907: Insecure data handling (TAINTED_STRING)
/tests/viracpitest.c: 135 in main()
129 VIR_IORT_NODE_TYPE_SMMUV3,
130 VIR_IORT_NODE_TYPE_PMCG);
131
132 return ret == 0 ? EXIT_SUCCESS : EXIT_FAILURE;
133 }
134
>> CID 405907: Insecure data handling (TAINTED_STRING)
>> Passing tainted string "**argv" to "virTestMain", which
cannot accept tainted data.
** CID 405906: Insecure data handling (TAINTED_SCALAR)
________________________________________________________________________________________________________
*** CID 405906: Insecure data handling (TAINTED_SCALAR)
/src/util/viracpi.c: 190 in virAcpiParseIORT()
184
185 VIR_DEBUG("IORT header: len = %" PRIu32 " revision = %"
PRIu8
186 " nnodes = %" PRIu32 " OEM = %s",
187 header.length, header.revision,
188 header.nnodes, header.oem_id);
189
>> CID 405906: Insecure data handling (TAINTED_SCALAR)
>> Passing tainted expression "header.length" to
"virAcpiParseIORTNodes", which uses it as a loop boundary.
190
return virAcpiParseIORTNodes(fd, filename, &header, nodesRet);
191 }
192
193
194 #define IORT_PATH "/sys/firmware/acpi/tables/IORT"
195
________________________________________________________________________________________________________
To view the defects in Coverity Scan visit,
https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my...
624
days inactive
624
days old
0 comments
1 participants
participants (1)
-
scan-admin@coverity.com