New Defects reported by Coverity Scan for freerangerouting/frr

scan-admin at coverity.com scan-admin at coverity.com
Tue May 4 09:16:40 UTC 2021


Hi,

Please find the latest report on new defect(s) introduced to freerangerouting/frr found with Coverity Scan.

1 new defect(s) introduced to freerangerouting/frr found with Coverity Scan.


New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)


** CID 1504585:  Insecure data handling  (TAINTED_SCALAR)
/ospfclient/ospf_apiclient.c: 334 in ospf_apiclient_send_request()


________________________________________________________________________________________________________
*** CID 1504585:  Insecure data handling  (TAINTED_SCALAR)
/ospfclient/ospf_apiclient.c: 334 in ospf_apiclient_send_request()
328     	/* Wait for reply */ /* NB: New "msg" is allocated by "msg_read()". */
329     	msg = msg_read(oclient->fd_sync);
330     	if (!msg)
331     		return -1;
332     
333     	assert(msg->hdr.msgtype == MSG_REPLY);
>>>     CID 1504585:  Insecure data handling  (TAINTED_SCALAR)
>>>     Using tainted variable "reqseq" as a loop boundary.
334     	assert(ntohl(msg->hdr.msgseq) == reqseq);
335     
336     	msgreply = (struct msg_reply *)STREAM_DATA(msg->s);
337     	rc = msgreply->errcode;
338     	msg_free(msg);
339     


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yrtN2DGUU98GYhjd55wXsXtw53zRK70R0agdV-2Fb7c45-2BkxBoZjryQtr5SpUD80NNfE-3DaTN__O0IDF7c8sUs2B6kWTeWwAJZqriD5fgsfL8PAN30oQTw1krx0wjS07wdCqfyh4aNQp4qtjggrN5SXdxisANRdWQt2Ljcpy06jJnmceoq34qN64tlvx4691-2FSiRaSpOP0NZpDsBnwf-2FguaXNZPKNVBNI6BsVntE3mOwq5pGyACrg2TAa2duc-2Bh8HR7A2UwHHanB4NraK0VcHKOeTQ-2BIwzgjg-3D-3D




More information about the dev mailing list