#1330 Potential NULL dereference in sss_krb5_read_etypes_for_keytab
Closed: Fixed None Opened 6 years ago by jhrozek.

1058        ret = krb5_kt_next_entry(context, keytab, &entry, &cursor);
At conditional (4): "ret != 0" taking the true branch.
1059        if (ret != 0) {
1060            break;
1061        }
....
....SNIP...
....
At conditional (5): "ret == -1765328202L" taking the true branch.
1102    if (ret == KRB5_KT_END) {
1103        ret = 0;
1104    }
1105
At conditional (6): "ret == 0" taking the true branch.
1106    if (ret == 0) {
1107        /* Sort the preferred enctypes first */
Passing null variable "etypes" to function "qsort", which dereferences it. (The dereference is assumed on the basis of the 'nonnull' parameter attribute.)
1108        qsort(etypes, count, sizeof(*etypes), compare_etypes);

Fields changed

keywords: => Coverity

Fields changed

keywords: Coverity => Coverity easyfix
milestone: NEEDS_TRIAGE => SSSD 1.9.0
rhbz: => 0

Fields changed

owner: somebody => sgallagh
patch: 0 => 1
status: new => assigned

Fixed by:
- a3dd0af (master)
- 6da9b3b (sssd-1-8)

component: SSSD => Kerberos Provider
milestone: SSSD 1.9.0 => SSSD 1.9.0 beta 2
resolution: => fixed
status: assigned => closed

Metadata Update from @jhrozek:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 1.9.0 beta 2

2 years ago

Login to comment on this ticket.

Metadata