Text   |  XML   |  ReML   |   Visible Warnings:

Integer Overflow of Allocation Size  at istream-concat.c:255

No properties have been set. | edit properties
Jump to warning location ↓ warning details...
Show Events | Options

i_stream_create_concat

(/home/sate/Testcases/c/cve/dovecot-1.2.0/src/lib/istream-concat.c)expand/collapse
Show more  
 232  struct istream *i_stream_create_concat(struct istream *input[])
 233  {
 234          struct concat_istream *cstream;
 235          unsigned int count;
 236          size_t max_buffer_size = I_STREAM_MIN_SIZE;
 237          bool blocking = TRUE, seekable = TRUE;
 238   
 239          /* if any of the streams isn't blocking or seekable, set ourself also 
 240             nonblocking/nonseekable */
 241          for (count = 0; input[count] != NULL; count++) {
 242                  size_t cur_max = input[count]->real_stream->max_buffer_size;
 243   
 244                  if (cur_max > max_buffer_size)
 245                          max_buffer_size = cur_max;
 246                  if (!input[count]->blocking)
 247                          blocking = FALSE;
 248                  if (!input[count]->seekable)
 249                          seekable = FALSE;
 250                  i_stream_ref(input[count]);
 251          }
 252          i_assert(count != 0);
 253   
 254          cstream = i_new(struct concat_istream, 1);
 255[+]         cstream->input = i_new(struct istream *, count + 1);
expand/collapse

i_malloc

(/home/sate/Testcases/c/cve/dovecot-1.2.0/src/lib/imem.c)expand/collapse
Show more  
 7  void *i_malloc(size_t size)
 8  {
 9      void *rv = malloc(size);
Show more  
Show more  




Change Warning 11814.24461 : Integer Overflow of Allocation Size

Because they are very similar, this warning shares annotations with warning 11814.24462.

Priority:
State:
Finding:
Owner:
Note: