New Defects reported by Coverity Scan for freerangerouting/frr

scan-admin at coverity.com scan-admin at coverity.com
Wed Apr 15 08:21:18 EDT 2020


Hi,

Please find the latest report on new defect(s) introduced to freerangerouting/frr found with Coverity Scan.

1 new defect(s) introduced to freerangerouting/frr found with Coverity Scan.
5 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)


** CID 1492630:  Memory - corruptions  (OVERRUN)


________________________________________________________________________________________________________
*** CID 1492630:  Memory - corruptions  (OVERRUN)
/zebra/rule_netlink.c: 358 in netlink_request_rules()
352     	memset(&req, 0, sizeof(req));
353     	req.n.nlmsg_type = type;
354     	req.n.nlmsg_flags = NLM_F_ROOT | NLM_F_MATCH | NLM_F_REQUEST;
355     	req.n.nlmsg_len = NLMSG_LENGTH(sizeof(struct fib_rule_hdr));
356     	req.frh.family = family;
357     
>>>     CID 1492630:  Memory - corruptions  (OVERRUN)
>>>     Overrunning struct type nlmsghdr of 16 bytes by passing it to a function which accesses it at byte offset 27 using argument "req.n.nlmsg_len" (which evaluates to 28).
358     	return netlink_request(&zns->netlink_cmd, &req.n);
359     }
360     
361     /*
362      * Get to know existing PBR rules in the kernel - typically called at startup.
363      */


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u2389337.ct.sendgrid.net/ls/click?upn=nJaKvJSIH-2FPAfmty-2BK5tYpPklAc1eEA-2F1zfUjH6teEwtXAn74UdOrNjckt5W0LJ0CDxXoQFnSJSV51LhpQIExOPuUyDQ-2BIaYqt88E1d5-2F-2Fc-3D6DfC_O0IDF7c8sUs2B6kWTeWwAJZqriD5fgsfL8PAN30oQTz1-2BkkzlBvGp7IFvuFdz27-2FR4Osz9mYQWvODoCAPImdd03StR3v9T7x3YYtqEus0xc2a-2B-2Bvwn-2FpgnZkCoHaoWcu36rZ2QHHaNoY-2BgLLDpV5kQOb3jku8ZyM2vLRaVQLiREu9-2B86NQJk9L0XvhcGAOr2ypAIuqsX0ZkL7N7bL6mljw-3D-3D




More information about the dev mailing list