You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In this case, the variable variant0 can reach a maximum value of 72.
The expression var = variant0 - VAR_MIN; calculates the difference between variant0 and a constant VAR_MIN, resulting in a value of 7 in this specific example.
Attempting to access the array using the calculated index 7 would lead to an out-of-bounds access, causing an array overflow.
Package Version and Platform:
Platform: ALT Linux 10
Package and version: main
Additional context
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Reporter: Dmitriy Fedin ([email protected]).
Organization: Fobos-NT ([email protected]).
The text was updated successfully, but these errors were encountered:
DmitriyFedin
changed the title
Using a pointer size instead of buffer size at function get_ip_str
buffer owerflow in the function parseVariant
Sep 24, 2024
389-ds-base/ldap/servers/slapd/tools/ldclt/parser.c
Lines 144 to 157 in b0fc468
In this case, the variable variant0 can reach a maximum value of 72.
The expression var = variant0 - VAR_MIN; calculates the difference between variant0 and a constant VAR_MIN, resulting in a value of 7 in this specific example.
Attempting to access the array using the calculated index 7 would lead to an out-of-bounds access, causing an array overflow.
Package Version and Platform:
Additional context
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Reporter: Dmitriy Fedin ([email protected]).
Organization: Fobos-NT ([email protected]).
The text was updated successfully, but these errors were encountered: