(/home/sate/Testcases/c/cve/wireshark-1.2.0/epan/dissectors/packet-dcerpc-spoolss.c) |
| |
| 5147 | | | static int SpoolssWritePrinter_q(tvbuff_t *tvb, int offset, packet_info *pinfo, |
| 5148 | | | proto_tree *tree, guint8 *drep) |
| 5149 | | | { |
| 5150 | | | e_ctx_hnd policy_hnd; |
| 5151 | | | char *pol_name; |
| 5152 | | | guint32 size; |
| 5153 | | | proto_item *item; |
| 5154 | | | proto_tree *subtree; |
| 5155 | | | |
| 5156 | | | |
| 5157 | | | |
| 5158 | | | offset = dissect_nt_policy_hnd( |
| 5159 | | | tvb, offset, pinfo, tree, drep, hf_hnd, &policy_hnd, NULL, |
| 5160 | | | FALSE, FALSE); |
| 5161 | | | |
| 5162 | | | dcerpc_fetch_polhnd_data(&policy_hnd, &pol_name, NULL, NULL, NULL, |
| 5163 | | | pinfo->fd->num); |
| 5164 | | | |
| 5165 | [+] | | if (check_col(pinfo->cinfo, COL_INFO) && pol_name) |
 |
| 5166 | | | col_append_fstr(pinfo->cinfo, COL_INFO, ", %s", |
| 5167 | | | pol_name); |
| 5168 | | | |
| 5169 | | | offset = dissect_ndr_uint32(tvb, offset, pinfo, tree, drep, |
| 5170 | [+] | | hf_buffer_size, &size); |
Event 4:
dissect_ndr_uint32() does not initialize size. - This may be because of a failure case or other special case for dissect_ndr_uint32().
hide
|
|
 |
| 5171 | | | |
| 5172 | | | if (check_col(pinfo->cinfo, COL_INFO)) |
Event 6:
Taking true branch. check_col(...) evaluates to true.
hide
|
|
| 5173 | | | col_append_fstr(pinfo->cinfo, COL_INFO, ", %d bytes", size); |
Uninitialized Variable
size was not initialized. The issue can occur if the highlighted code executes. See related event 4. Show: All events | Only primary events |
|
| |