HomeFreeBSD
Diffusion FreeBSD src repository 1bf7ee1ab5df

dtrace: fix an out of bound read and a NULL pointer increment
1bf7ee1ab5df
Actions

Description

dtrace: fix an out of bound read and a NULL pointer increment

In dt_cc.c when the provider is an empty string, accessing
strlen(pdp->dtpd_provider) - 1 will result in a pdp->dtpd_provider[-1]
access.

Similarly, in dt_ident.c, if p2 is a NULL pointer, doing a p2++ on it is
undefined behaviour.

Reviewed by: markj
Sponsored by: Google

(cherry picked from commit a877965fa3da218bceaaa0f51c4d7770e64e6df0)

Details

Provenance
domagoj.stolfa_gmail.comAuthored on Jun 17 2021, 5:35 PM
markjCommitted on Jun 24 2021, 1:04 PM
Parents
rGd16b938e7343: amd64 efirt: initialize vm_pages backing EFI runtime memory
Branches
Unknown
Tags
Unknown

Changes (2)

PathSize
cddl/
contrib/
opensolaris/
lib/
libdtrace/
common/

rG1bf7ee1ab5df

View Options

cddl/contrib/opensolaris/lib/libdtrace/common/dt_cc.c

Loading...
View Options

cddl/contrib/opensolaris/lib/libdtrace/common/dt_ident.c

Loading...