New Defects reported by Coverity Scan for freerangerouting/frr
scan-admin at coverity.com
scan-admin at coverity.com
Thu Dec 3 13:59:43 UTC 2020
Hi,
Please find the latest report on new defect(s) introduced to freerangerouting/frr found with Coverity Scan.
1 new defect(s) introduced to freerangerouting/frr found with Coverity Scan.
New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)
** CID 1499893: (OVERRUN)
________________________________________________________________________________________________________
*** CID 1499893: (OVERRUN)
/isisd/isis_spf.c: 1349 in spf_adj_list_parse_lsp()
1343 if (lsp->tlvs) {
1344 if (pseudo_lsp || spftree->mtid == ISIS_MT_IPV4_UNICAST) {
1345 head = lsp->tlvs->oldstyle_reach.head;
1346 for (struct isis_oldstyle_reach *reach =
1347 (struct isis_oldstyle_reach *)head;
1348 reach; reach = reach->next) {
>>> CID 1499893: (OVERRUN)
>>> Overrunning array "reach->id" of 7 bytes by passing it to a function which accesses it at byte offset 7.
1349 spf_adj_list_parse_tlv(
1350 spftree, adj_list, reach->id,
1351 pseudo_nodeid, pseudo_metric,
1352 reach->metric, true, NULL);
1353 }
1354 }
/isisd/isis_spf.c: 1366 in spf_adj_list_parse_lsp()
1360 spftree->mtid);
1361 if (te_neighs) {
1362 head = te_neighs->head;
1363 for (struct isis_extended_reach *reach =
1364 (struct isis_extended_reach *)head;
1365 reach; reach = reach->next) {
>>> CID 1499893: (OVERRUN)
>>> Overrunning array "reach->id" of 7 bytes by passing it to a function which accesses it at byte offset 7.
1366 spf_adj_list_parse_tlv(
1367 spftree, adj_list, reach->id,
1368 pseudo_nodeid, pseudo_metric,
1369 reach->metric, false, reach->subtlvs);
1370 }
1371 }
________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yrtN2DGUU98GYhjd55wXsXtw53zRK70R0agdV-2Fb7c45-2BkxBoZjryQtr5SpUD80NNfE-3D4dTU_O0IDF7c8sUs2B6kWTeWwAJZqriD5fgsfL8PAN30oQTyC814hzZWPbEf5iic0GH1bdEfT-2BlApThJfV3KOtVTQvAQn11YYUNn9nXiZMxGqgsaMoIGqETT7Ba3rf6VGUmgBa-2FEO3wqyXyboreSej5jxyk-2B2iW7YK0VqCG0Cw99p4sXGHmzDyJ1-2FV8yzM3o8bBRZz1XOUMgRwZO0OmYd6STaJxBhaBpjrqUMOvFDKKCdUz4-3D
More information about the dev
mailing list