- **status**: unassigned --> fixed
- **Milestone**: future --> 5.19.06
- **Comment**:
commit 3895c7a88bdb3c6f86da1083ea0fd9e2cd642d01
Author: Thanh Nguyen <[email protected]>
Date: Wed Jun 5 14:35:10 2019 +1000
amfnd: fix error reading from deallocated memory [#2568]
Invalid read is from the following
- avnd_evt_mds_ava_dn_evh() (amf/amfnd/comp.cc)
- avsv_create_association_class_dn() (amf/common/util.c)
Other changes are to fix cppcheck error report
---
** [tickets:#2568] amfnd: invalid read in cbq.cc**
**Status:** fixed
**Milestone:** 5.19.06
**Created:** Fri Sep 01, 2017 05:31 AM UTC by Gary Lee
**Last Updated:** Sat Jun 01, 2019 01:04 AM UTC
**Owner:** nobody
Noticed when running valgrind.
==195== Invalid read of size 8
==195== at 0x118F70: avnd_evt_tmr_cbk_resp_evh(avnd_cb_tag*, avnd_evt_tag*)
(cbq.cc:636)
==195== by 0x142DEA: avnd_evt_process (main.cc:658)
==195== by 0x142DEA: avnd_main_process() (main.cc:610)
==195== by 0x116B81: main (main.cc:203)
==195== Address 0x800b1c0 is 64 bytes inside a block of size 112 free'd
==195== at 0x4C2F24B: operator delete(void*) (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==195== by 0x118CBE: avnd_comp_cbq_rec_pop_and_del(avnd_cb_tag*,
avnd_comp_tag*, avnd_cbk_tag*, bool) (cbq.cc:930)
==195== by 0x118F6F: avnd_evt_tmr_cbk_resp_evh(avnd_cb_tag*, avnd_evt_tag*)
(cbq.cc:636)
==195== by 0x142DEA: avnd_evt_process (main.cc:658)
==195== by 0x142DEA: avnd_main_process() (main.cc:610)
==195== by 0x116B81: main (main.cc:203)
==195== Block was alloc'd at
==195== at 0x4C2E0EF: operator new(unsigned long) (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==195== by 0x11AD18: avnd_comp_cbq_rec_add(avnd_cb_tag*, avnd_comp_tag*,
avsv_amf_cbk_info_tag*, unsigned long*, long long) (cbq.cc:955)
==195== by 0x11AE85: avnd_comp_cbq_send(avnd_cb_tag*, avnd_comp_tag*,
unsigned long*, unsigned long long, avsv_amf_cbk_info_tag*, long long)
(cbq.cc:715)
==195== by 0x128162: avnd_comp_cbk_send(avnd_cb_tag*, avnd_comp_tag*,
avsv_amf_cbk_type, avnd_hc_rec_tag*, avnd_comp_csi_rec*) (comp.cc:2164)
==195== by 0x123558: avnd_comp_clc_inst_restart_hdler(avnd_cb_tag*,
avnd_comp_tag*) (clc.cc:2218)
==195== by 0x124B5C: avnd_comp_clc_fsm_run(avnd_cb_tag*, avnd_comp_tag*,
avnd_comp_clc_pres_fsm_ev) (clc.cc:861)
==195== by 0x12C1BF: comp_restart_initiate(avnd_comp_tag*) (comp.cc:2767)
==195== by 0x12C4EB: avnd_evt_comp_admin_op_req(avnd_cb_tag*, avnd_evt_tag*)
(comp.cc:2822)
==195== by 0x1361AA: avnd_evt_avd_admin_op_req_evh(avnd_cb_tag*,
avnd_evt_tag*) (di.cc:1583)
==195== by 0x142DEA: avnd_evt_process (main.cc:658)
==195== by 0x142DEA: avnd_main_process() (main.cc:610)
==195== by 0x116B81: main (main.cc:203)
---
Sent from sourceforge.net because [email protected] is
subscribed to https://sourceforge.net/p/opensaf/tickets/
To unsubscribe from further messages, a project admin can change settings at
https://sourceforge.net/p/opensaf/admin/tickets/options. Or, if this is a
mailing list, you can unsubscribe from the mailing list._______________________________________________
Opensaf-tickets mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/opensaf-tickets
