]> granicus.if.org Git - file/commit
projects / file / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 89a3f53) | patch
Roman I Khimov:
authorChristos Zoulas <christos@zoulas.com>
Tue, 13 May 2014 16:41:06 +0000 (16:41 +0000)
committerChristos Zoulas <christos@zoulas.com>
Tue, 13 May 2014 16:41:06 +0000 (16:41 +0000)
commit1efabfcb9d4e9ba906dcc7d8a7563c7a1c946383
tree4b9246130e59eab2996bddb53cfefcd0d5217cb7tree | snapshot
parent89a3f534891aca3eeda14988c4634f2547a84722commit | diff
Roman I Khimov:
If cdf_count_chain() is called with sid < 0, then we end up returning
zero length, which in turn leads to calloc() calls for 0 bytes in
cdf_read_long_sector_chain(), cdf_read_short_sector_chain() and
cdf_read_ssat(). Depending on calloc() implementation we can end
up returning -1 or 0 from those. As negative sid is probably wrong
case anyway, it might be better to always return -1.
Issue found by clang static analysis.
src/cdf.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.