Standards Based Linux Instrumentation / Bugs / #2486 xmlUnescape may access memory beyond its buffer

#2486 xmlUnescape may access memory beyond its buffer

Milestone: Stability

Status: pending-fixed

Owner: Chris Buccella

Labels: sfcb (1090)

Component:

Priority: 5

Updated: 2012-06-15

Created: 2012-06-14

Creator: Chris Buccella

Private: No

"cimXmlParserProcessed.c", line 413: accessing beyond allocated memory
ONE POSSIBLE PATH LEADING TO THE ERROR:
"cimXmlParserProcessed.c", line 347: the if-condition is false
"cimXmlParserProcessed.c", line 356: the if-condition is false
"cimXmlParserProcessed.c", line 362: assuming `semiloc-buf == MAX_UNESC_CHAR_LEN'
"cimXmlParserProcessed.c", line 362: the if-condition is false (used as evidence that error is possible)
"cimXmlParserProcessed.c", line 369: the if-condition is false
"cimXmlParserProcessed.c", line 413: `strncpy' could write into the buffer `escchar'
which is 10 bytes long

Discussion

Chris Buccella - 2012-06-14

committed patch (1.3 branch)

3535313-xmlUnescape_mem.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Chris Buccella - 2012-06-15

committed to CVS HEAD and git master

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Chris Buccella - 2012-06-15

status: open --> pending-fixed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

xmlUnescape may access memory beyond its buffer

Group

Searches

Help

#2486 xmlUnescape may access memory beyond its buffer

Discussion