(/home/sate/Testcases/c/cve/wireshark-1.2.0/epan/dissectors/packet-dcerpc-spoolss.c) |
| |
| 3384 | | | dissect_SEC_DESC_BUF(tvbuff_t *tvb, int offset, packet_info *pinfo, |
| 3385 | | | proto_tree *tree, guint8 *drep) |
| 3386 | | | { |
| 3387 | | | proto_item *item; |
| 3388 | | | proto_tree *subtree; |
| 3389 | | | guint32 len; |
| 3390 | | | |
| 3391 | | | |
| 3392 | | | |
| 3393 | | | |
| 3394 | | | |
| 3395 | | | |
| 3396 | | | |
| 3397 | | | item = proto_tree_add_text( |
| 3398 | | | tree, tvb, offset, 0, "Security descriptor buffer"); |
| 3399 | | | |
| 3400 | | | subtree = proto_item_add_subtree(item, ett_SEC_DESC_BUF); |
| 3401 | | | |
| 3402 | | | offset = dissect_ndr_uint32( |
| 3403 | | | tvb, offset, pinfo, subtree, drep, |
| 3404 | | | hf_secdescbuf_maxlen, NULL); |
| 3405 | | | |
| 3406 | | | offset = dissect_ndr_uint32( |
| 3407 | | | tvb, offset, pinfo, subtree, drep, |
| 3408 | | | hf_secdescbuf_undoc, NULL); |
| 3409 | | | |
| 3410 | | | offset = dissect_ndr_uint32( |
| 3411 | | | tvb, offset, pinfo, subtree, drep, |
| 3412 | [+] | | hf_secdescbuf_len, &len); |
Event 1:
dissect_ndr_uint32() does not initialize len. - This may be because of a failure case or other special case for dissect_ndr_uint32().
hide
|
|
 |
| 3413 | | | |
| 3414 | | | dissect_nt_sec_desc( |
| 3415 | | | tvb, offset, pinfo, subtree, drep, TRUE, len, |
Event 3:
!0 evaluates to true.
hide
Uninitialized Variable
len was not initialized. The issue can occur if the highlighted code executes. See related event 1. Show: All events | Only primary events |
|
| 3416 | | | &spoolss_printer_access_mask_info); |
| |