New Defects reported by Coverity Scan for LibreOffice

scan-admin at coverity.com scan-admin at coverity.com
Sun Jun 18 04:35:15 UTC 2017 

Hi,

Please find the latest report on new defect(s) introduced to LibreOffice found with Coverity Scan.

3 new defect(s) introduced to LibreOffice found with Coverity Scan.
3 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 3 of 3 defect(s)


** CID 1412875:  Uninitialized members  (UNINIT_CTOR)
/vcl/unx/generic/gdi/cairo_xlib_cairo.cxx: 70 in cairo::X11SysData::X11SysData(const SystemGraphicsData &)()


________________________________________________________________________________________________________
*** CID 1412875:  Uninitialized members  (UNINIT_CTOR)
/vcl/unx/generic/gdi/cairo_xlib_cairo.cxx: 70 in cairo::X11SysData::X11SysData(const SystemGraphicsData &)()
64             pRenderFormat(nullptr)
65         {}
66     
67         X11SysData::X11SysData( const SystemGraphicsData& pSysDat ) :
68             hDrawable(pSysDat.hDrawable),
69             pRenderFormat(pSysDat.pXRenderFormat)
>>>     CID 1412875:  Uninitialized members  (UNINIT_CTOR)
>>>     Non-static class member "nScreen" is not initialized in this constructor nor in any functions that it calls.
70         {}
71     
72         X11SysData::X11SysData( const SystemEnvData& pSysDat ) :
73             pDisplay(pSysDat.pDisplay),
74             hDrawable(pSysDat.aWindow),
75             pVisual(pSysDat.pVisual),

** CID 1412874:  Memory - illegal accesses  (OVERRUN)
/i18npool/source/nativenumber/nativenumbersupplier.cxx: 867 in com::sun::star::i18n::makeHebrewNumber(long, rtl::OUStringBuffer &, bool, bool)()


________________________________________________________________________________________________________
*** CID 1412874:  Memory - illegal accesses  (OVERRUN)
/i18npool/source/nativenumber/nativenumbersupplier.cxx: 867 in com::sun::star::i18n::makeHebrewNumber(long, rtl::OUStringBuffer &, bool, bool)()
861             sal_Int16 nbOfChar = 0;
862             for (sal_Int32 j = 0; num > 0 && j < sal_Int32(SAL_N_ELEMENTS(HebrewNumberCharArray)); j++) {
863                 if (num - HebrewNumberCharArray[j].value >= 0) {
864                     nbOfChar++;
865                     if (num == 15 || num == 16) // substitution for 15 and 16
866                         j++;
>>>     CID 1412874:  Memory - illegal accesses  (OVERRUN)
>>>     Overrunning array "_INTERNAL_24_nativenumbersupplier_cxx_b39422d2::com::sun::star::i18n::HebrewNumberCharArray" of 23 4-byte elements at element index 23 (byte offset 92) using index "j" (which evaluates to 23).
867                     num = sal::static_int_cast<sal_Int16>( num - HebrewNumberCharArray[j].value );
868                     output.append(HebrewNumberCharArray[j].code);
869                 }
870             }
871             if (useGeresh) {
872                 if (nbOfChar > 1)   // a number is written as more than one character

** CID 1412873:  Null pointer dereferences  (NULL_RETURNS)
/sc/source/core/tool/interpr4.cxx: 1300 in ScInterpreter::GetExternalDoubleRef(unsigned short, const rtl::OUString &, const ScComplexRefData &, std::shared_ptr<ScTokenArray> &)()


________________________________________________________________________________________________________
*** CID 1412873:  Null pointer dereferences  (NULL_RETURNS)
/sc/source/core/tool/interpr4.cxx: 1300 in ScInterpreter::GetExternalDoubleRef(unsigned short, const rtl::OUString &, const ScComplexRefData &, std::shared_ptr<ScTokenArray> &)()
1294         {
1295             SetError(FormulaError::IllegalArgument);
1296             return;
1297         }
1298     
1299         formula::FormulaTokenArrayPlainIterator aIter(*pArray);
>>>     CID 1412873:  Null pointer dereferences  (NULL_RETURNS)
>>>     Assigning: "pToken" = null return value from "First".
1300         formula::FormulaToken* pToken = aIter.First();
1301         if (pToken->GetType() == svError)
1302         {
1303             SetError( pToken->GetError());
1304             return;
1305         }


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRZBnDJeNb0HijxaS4JNJPxk3kpyAm2AYqo71yXmnOxB72ibeUH-2F-2F1Lhi9AZq3dRu-2F4-3D_g-2BrHdvqzaBa155F-2F8AmPhpJzY63UzWDisJV95WUBpGhqFw1ICExHG8aMaV2EoFpyK-2F3yHxrwHKpn-2BNZcOl-2BXRDQJGbTv0qN6e03Y6R2-2F5YmZ6d48bE0WkeDand-2BAYPfLT18s6P25aku-2FXnElPJXZUrkJEQAxYGMFjvQxbnYxiFU8hoeJfd7X-2BjSbqtH1bPl9Z-2FAzXpw0bqnPkNDj0me4VVUowtwKPj9WLRryt9ypoH0-3D

To manage Coverity Scan email notifications for "libreoffice at lists.freedesktop.org", click https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRbVDbis712qZDP-2FA8y06Nq4k1FZJSDV-2FTHi5VQof9xGafB4oBwGYxuHHknceo2QLpCrZ44Ciy7AqBR2QyX6OCB5N5X-2B1MAElavPQhH6nLwozJzqOkt2k8uOkYf2ZoppNa9QVe0T3fEZVQ7Kky1tOkLz_g-2BrHdvqzaBa155F-2F8AmPhpJzY63UzWDisJV95WUBpGhqFw1ICExHG8aMaV2EoFpyK-2F3yHxrwHKpn-2BNZcOl-2BXRCx5JfO4J9fCGAND4hKBS3bjDX-2FTGH1oHjnuk172Y0rx10h0lD6rgeFl5RXUySxPjQXkA3ddq1rXvTA7IUwlZrO2Kk5Ci2SdSoCCe7s-2BZWB7MozTPv-2FauE0zW5I-2BYZzm-2F0zCddByUqPlb3zH49nxEiY-3D

More information about the LibreOffice mailing list