[chrony-dev] [sdl-chrony] DEREF_OF_NULL.RET.STAT in UTI_OpenFile functio

[chrony-dev] [sdl-chrony] DEREF_OF_NULL.RET.STAT in UTI_OpenFile function

[ Thread Index | Date Index | More chrony.tuxfamily.org/chrony-dev Archives ]

To: chrony-dev@xxxxxxxxxxxxxxxxxxxx
Subject: [chrony-dev] [sdl-chrony] DEREF_OF_NULL.RET.STAT in UTI_OpenFile function
From: Елена Быханова <e.bykhanova@xxxxxxxxxxx>
Date: Tue, 10 Oct 2023 21:36:45 +0300
Cc: static_fobos@xxxxxxxxxxx
Thread-index: IXTLxx7rX4ryKx9qigSKuV9Y2xJwcQ==
Thread-topic: DEREF_OF_NULL.RET.STAT in UTI_OpenFile function

Dear colleagues!

While analyzing the program code, we found the following: DEREF_OF_NULL in conf.c .

Return value of a function 'UTI_OpenFile' is dereferenced at conf.c:515 without checking for NULL.

It is usually checked for similar functions:

The only difference between these cases is the register of the transmitted value. However, the research did not reveal any reasons for skipping the check in the case of uppercase letters.

Here we can get a NULL pointer dereference.

P.S. There is the same problem in files: main.c, tempcomp.c, util.c .

Found by Linux Verification Center portal.linuxtesting.ru with SVACE.

Author E. Bykhanova.

Follow-Ups:
- [chrony-dev] [sdl-chrony] NO_CAST.INTEGER_OVERFLOW in set_frequency function
  - From: Елена Быханова
- Re: [chrony-dev] [sdl-chrony] DEREF_OF_NULL.RET.STAT in UTI_OpenFile function
  - From: Miroslav Lichvar

Messages sorted by: [ date | thread ]
Next by Date: [chrony-dev] [sdl-chrony] NO_CAST.INTEGER_OVERFLOW in set_frequency function
Next by thread: [chrony-dev] [sdl-chrony] NO_CAST.INTEGER_OVERFLOW in set_frequency function

Mail converted by MHonArc 2.6.19+

http://listengine.tuxfamily.org/