New Defects reported by Coverity Scan for LibreOffice

scan-admin at coverity.com scan-admin at coverity.com
Thu Sep 22 04:19:02 UTC 2022 

Hi,

Please find the latest report on new defect(s) introduced to LibreOffice found with Coverity Scan.

1 new defect(s) introduced to LibreOffice found with Coverity Scan.
4 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)


** CID 1515531:  Memory - corruptions  (OVERRUN)


________________________________________________________________________________________________________
*** CID 1515531:  Memory - corruptions  (OVERRUN)
/unotools/source/config/configpaths.cxx: 110 in utl::splitLastFromConfigurationPath(std::basic_string_view<char16_t, std::char_traits<char16_t>>, rtl::OUString &, rtl::OUString &)()
104                 nEnd = nPos + 1;
105                 nPos = _sInPath.rfind('[',nEnd);
106                 nStart = nPos + 1;
107             }
108     
109             OSL_ENSURE(nPos != std::u16string_view::npos && _sInPath[nPos] == '[', "Invalid config path: unmatched quotes or brackets");
>>>     CID 1515531:  Memory - corruptions  (OVERRUN)
>>>     Calling "operator []" with "_sInPath._M_str" and "nPos" is suspicious because of the very large index, 18446744073709551614. The index may be due to a negative parameter being interpreted as unsigned.
110             if (nPos != std::u16string_view::npos && _sInPath[nPos] == '[')
111             {
112                 nPos =  _sInPath.rfind('/',nPos);
113             }
114             else // defined behavior for invalid paths
115             {


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50ypSs1kiFPuCn2xFdlMIFBirii0zZ9j2-2F9F2XPBcBm2BNgi9duPy3v-2FzgFDd2LJ-2BDKI-3DBQlx_OTq2XUZbbipYjyLSo6GRo-2FpVxQ9OzkDINu9UTS-2FQhSdO0F0jQniitrGlNxDIzPJi77qd4kU6xvIhaXKiFLs4f8lXr7J91rf1LyZYjyq7N601F2wIHfKLGV7FUL5-2Fgm3LO3B9sy2mp75eeY00pLXOwkVgV-2FPXtyLPNdEkHbKHiEy-2BdEdpZRwKjeJKQVccGtZEM2RFYnLg5flC8NK1FRPqmoZ5ck4MKGgV1-2BKFpoJIV9w-3D

More information about the LibreOffice mailing list