Hi,
Please find the latest report on new defect(s) introduced to coreboot found
with Coverity Scan.
1 new defect(s) introduced to coreboot found with Coverity Scan.
1 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent
build analyzed by Coverity Scan.
New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)
** CID 1400443: Insecure data handling (INTEGER_OVERFLOW)
/src/arch/x86/smbios.c: 537 in smbios_write_type2()
________________________________________________________________________________________________________
*** CID 1400443: Insecure data handling (INTEGER_OVERFLOW)
/src/arch/x86/smbios.c: 537 in smbios_write_type2()
531 t->location_in_chassis = smbios_add_string(t->eos,
532 smbios_mainboard_location_in_chassis());
533 t->board_type = smbios_mainboard_board_type();
534 t->chassis_handle = chassis_handle;
535 len = t->length + smbios_string_table_len(t->eos);
536 *current += len;
>>> CID 1400443: Insecure data handling (INTEGER_OVERFLOW)
>>> Overflowed or truncated value (or a value computed from an overflowed
>>> or truncated value) "len" used as return value.
537 return len;
538 }
539
540 static int smbios_write_type3(unsigned long *current, int handle)
541 {
542 struct smbios_type3 *t = (struct smbios_type3 *)*current;
________________________________________________________________________________________________________
To view the defects in Coverity Scan visit,
https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRbLuoVetFLSjdonCi1EjfHRqWGQvojmmkYaBE-2BPJiTQvaU4HClancRgJSp1vcdHRWU-3D_q4bX76XMySz3BXBlWr5fXXJ4cvAsgEXEqC7dBPM7O5buEEFN8HcvCCtgLPSeVcfdMa10dWMBVb8vBSS78KV3bR-2FhZyAD-2BAW1NlKlRTaEd7fJZtuJnic0aH6-2BuK8H27LnINhlT2DtAy1CbQmSwfS2Qdcl56NJp-2F3mNrgETnJXlgfadzq1MRURMdcQ4a6B-2BPakkhXV6n9JJZBT7bzflgdKR7KO1AtAxgHQrRDY6vN2ffg-3D
_______________________________________________
coreboot mailing list -- coreboot@coreboot.org
To unsubscribe send an email to coreboot-le...@coreboot.org
