(/home/sate/Testcases/c/cve/dovecot-1.2.0/src/plugins/quota/quota-plugin.c) |
| |
| 22 | | | static void quota_root_add_rules(const char *root_name, |
| 23 | | | struct quota_root_settings *root_set) |
| 24 | | | { |
| 25 | | | const char *rule_name, *rule, *error; |
| 26 | | | unsigned int i; |
| 27 | | | |
| 28 | [+] | | rule_name = t_strconcat(root_name, "_RULE", NULL); |
 |
| 29 | | | for (i = 2;; i++) { |
| 30 | | | rule = getenv(rule_name); |
Event 7:
rule_name, which evaluates to NULL, is passed to getenv(). See related event 6.
hide
Null Pointer Dereference
The body of getenv() dereferences rule_name, but it is NULL. The issue can occur if the highlighted code executes. See related event 7. Show: All events | Only primary events |
|
| |