(/home/sate/Testcases/c/cve/wireshark-1.2.0/epan/dissectors/packet-ranap.c) |
| |
| 11659 | | | dissect_sccp_ranap_heur(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) |
| 11660 | | | { |
| 11661 | | | guint8 temp; |
| 11662 | | | asn1_ctx_t asn1_ctx; |
| 11663 | | | guint length; |
| 11664 | | | int offset; |
| 11665 | | | |
| 11666 | | | asn1_ctx_init(&asn1_ctx, ASN1_ENC_PER, TRUE, pinfo); |
Event 1:
!0 evaluates to true.
hide
|
|
| 11667 | | | |
| 11668 | | | |
| 11669 | | | |
| 11670 | | | |
| 11671 | | | |
| 11672 | | | |
| 11673 | | | |
| 11674 | | | |
| 11675 | | | |
| 11676 | | | |
| 11677 | | | #define LENGTH_OFFSET 3 |
| 11678 | | | #define MSG_TYPE_OFFSET 1 |
| 11679 | | | if (tvb_length(tvb) < 4) { return FALSE; } |
Event 2:
Skipping " if". tvb_length(tvb) < 4 evaluates to false.
hide
|
|
| 11680 | | | |
| 11681 | | | |
| 11682 | [+] | | offset = dissect_per_length_determinant(tvb, LENGTH_OFFSET<<3, &asn1_ctx, tree, -1, &length); |
Event 3:
dissect_per_length_determinant() does not initialize length. - This may be because of a failure case or other special case for dissect_per_length_determinant().
hide
|
|
 |
| 11683 | | | offset = offset>>3; |
| 11684 | | | if (length!= (tvb_length(tvb) - offset)){ |
Uninitialized Variable
length was not initialized. The issue can occur if the highlighted code executes. See related event 3. Show: All events | Only primary events |
|
| |