New Defects reported by Coverity Scan for freerangerouting/frr

Thu Dec 3 13:59:43 UTC 2020

Hi,

Please find the latest report on new defect(s) introduced to freerangerouting/frr found with Coverity Scan.

1 new defect(s) introduced to freerangerouting/frr found with Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)

** CID 1499893:    (OVERRUN)

________________________________________________________________________________________________________
*** CID 1499893:    (OVERRUN)
/isisd/isis_spf.c: 1349 in spf_adj_list_parse_lsp()
1343     	if (lsp->tlvs) {
1344     		if (pseudo_lsp || spftree->mtid == ISIS_MT_IPV4_UNICAST) {
1345     			head = lsp->tlvs->oldstyle_reach.head;
1346     			for (struct isis_oldstyle_reach *reach =
1347     				     (struct isis_oldstyle_reach *)head;
1348     			     reach; reach = reach->next) {
>>>     CID 1499893:    (OVERRUN)
>>>     Overrunning array "reach->id" of 7 bytes by passing it to a function which accesses it at byte offset 7.
1349     				spf_adj_list_parse_tlv(
1350     					spftree, adj_list, reach->id,
1351     					pseudo_nodeid, pseudo_metric,
1352     					reach->metric, true, NULL);
1353     			}
1354     		}
/isisd/isis_spf.c: 1366 in spf_adj_list_parse_lsp()
1360     						      spftree->mtid);
1361     		if (te_neighs) {
1362     			head = te_neighs->head;
1363     			for (struct isis_extended_reach *reach =
1364     				     (struct isis_extended_reach *)head;
1365     			     reach; reach = reach->next) {
>>>     CID 1499893:    (OVERRUN)
>>>     Overrunning array "reach->id" of 7 bytes by passing it to a function which accesses it at byte offset 7.
1366     				spf_adj_list_parse_tlv(
1367     					spftree, adj_list, reach->id,
1368     					pseudo_nodeid, pseudo_metric,
1369     					reach->metric, false, reach->subtlvs);
1370     			}
1371     		}

________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yrtN2DGUU98GYhjd55wXsXtw53zRK70R0agdV-2Fb7c45-2BkxBoZjryQtr5SpUD80NNfE-3D4dTU_O0IDF7c8sUs2B6kWTeWwAJZqriD5fgsfL8PAN30oQTyC814hzZWPbEf5iic0GH1bdEfT-2BlApThJfV3KOtVTQvAQn11YYUNn9nXiZMxGqgsaMoIGqETT7Ba3rf6VGUmgBa-2FEO3wqyXyboreSej5jxyk-2B2iW7YK0VqCG0Cw99p4sXGHmzDyJ1-2FV8yzM3o8bBRZz1XOUMgRwZO0OmYd6STaJxBhaBpjrqUMOvFDKKCdUz4-3D