New Defects reported by Coverity Scan for freerangerouting/frr
scan-admin at coverity.com
scan-admin at coverity.com
Tue May 4 09:16:40 UTC 2021
Hi,
Please find the latest report on new defect(s) introduced to freerangerouting/frr found with Coverity Scan.
1 new defect(s) introduced to freerangerouting/frr found with Coverity Scan.
New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)
** CID 1504585: Insecure data handling (TAINTED_SCALAR)
/ospfclient/ospf_apiclient.c: 334 in ospf_apiclient_send_request()
________________________________________________________________________________________________________
*** CID 1504585: Insecure data handling (TAINTED_SCALAR)
/ospfclient/ospf_apiclient.c: 334 in ospf_apiclient_send_request()
328 /* Wait for reply */ /* NB: New "msg" is allocated by "msg_read()". */
329 msg = msg_read(oclient->fd_sync);
330 if (!msg)
331 return -1;
332
333 assert(msg->hdr.msgtype == MSG_REPLY);
>>> CID 1504585: Insecure data handling (TAINTED_SCALAR)
>>> Using tainted variable "reqseq" as a loop boundary.
334 assert(ntohl(msg->hdr.msgseq) == reqseq);
335
336 msgreply = (struct msg_reply *)STREAM_DATA(msg->s);
337 rc = msgreply->errcode;
338 msg_free(msg);
339
________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yrtN2DGUU98GYhjd55wXsXtw53zRK70R0agdV-2Fb7c45-2BkxBoZjryQtr5SpUD80NNfE-3DaTN__O0IDF7c8sUs2B6kWTeWwAJZqriD5fgsfL8PAN30oQTw1krx0wjS07wdCqfyh4aNQp4qtjggrN5SXdxisANRdWQt2Ljcpy06jJnmceoq34qN64tlvx4691-2FSiRaSpOP0NZpDsBnwf-2FguaXNZPKNVBNI6BsVntE3mOwq5pGyACrg2TAa2duc-2Bh8HR7A2UwHHanB4NraK0VcHKOeTQ-2BIwzgjg-3D-3D
More information about the dev
mailing list