URL:
<https://savannah.gnu.org/bugs/?55694>
Summary: Possible bug in file grub/grub-core/fs/squash4.c
line 739
Project: GNU GRUB
Submitted by: petrum2
Submitted on: Mon 11 Feb 2019 02:39:26 PM UTC
Category: None
Severity: Major
Priority: 5 - Normal
Item Group: None
Status: None
Privacy: Public
Assigned to: None
Originator Name:
Originator Email:
Open/Closed: Open
Discussion Lock: Any
Release:
Release: Git master
Reproducibility: None
Planned Release: None
_______________________________________________________
Details:
While experimenting with a novel static analysis technique in CodeSonar, we
noticed the following potential problem at the next location:
FilePath: grub/grub-core/fs/squash4.c
Function: grub_squash_open
Line number: 739
As far as I understood from a comment for function grub_fshelp_find_file
(invoked in line 707 in the previous function), fdiro may point to root as a
result of the execution of grub_fshelp_find_file. Thus, in line 739 (and 733)
it is possible to deallocate a non-heap address (since root is local).
Thanks,
Petru-Florin Mihancea
_______________________________________________________
Reply to this item at:
<https://savannah.gnu.org/bugs/?55694>
_______________________________________________
Message sent via Savannah
https://savannah.gnu.org/
_______________________________________________
Bug-grub mailing list
[email protected]
https://lists.gnu.org/mailman/listinfo/bug-grub
