Text   |  XML   |  ReML   |   Visible Warnings:

Integer Overflow of Allocation Size  at diam_dict.c:2728

No properties have been set. | edit properties
Jump to warning location ↓ warning details...
Show Events | Options

yy_push_state

(/home/sate/Testcases/c/cve/wireshark-1.2.0/epan/diam_dict.c)expand/collapse
Show more  
 2721      static void yy_push_state (int  new_state )
 2722  {
 2723          if ( (yy_start_stack_ptr) >= (yy_start_stack_depth) )
 2724                  {
 2725                  yy_size_t new_size;
 2726   
 2727                  (yy_start_stack_depth) += YY_START_STACK_INCR;
 2728                  new_size = (yy_start_stack_depth) * sizeof( int );
 2729   
 2730                  if ( ! (yy_start_stack) )
 2731                          (yy_start_stack) = (int *) DiamDictalloc(new_size  );
 2732   
 2733                  else 
 2734[+]                         (yy_start_stack) = (int *) DiamDictrealloc((void *) (yy_start_stack),new_size  );
expand/collapse

DiamDictrealloc

(/home/sate/Testcases/c/cve/wireshark-1.2.0/epan/diam_dict.c)expand/collapse
Show more  
 2952  void *DiamDictrealloc  (void * ptr, yy_size_t  size )
 2953  {
 2954          /* The cast to (char *) in the following accommodates both 
 2955           * implementations that use char* generic pointers, and those
 2956           * that use void* generic pointers.  It works with the latter
 2957           * because both ANSI C and C++ allow castless assignment from
 2958           * any pointer type to void*, and deal with argument conversions 
 2959           * as though doing an assignment.
 2960           */
 2961          return (void *) realloc( (char *) ptr, size );
Show more  
Show more  




Change Warning 2293.30099 : Integer Overflow of Allocation Size

Priority:
State:
Finding:
Owner:
Note: