[Bug 242030] New: bluez-utils-3.8-8 : array subscript is above array bounds
https://bugzilla.novell.com/show_bug.cgi?id=242030 Summary: bluez-utils-3.8-8 : array subscript is above array bounds Product: openSUSE 10.3 Version: unspecified Platform: All OS/Version: SuSE Other Status: NEW Severity: Normal Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: dcb314@hotmail.com QAContact: qa@suse.de I just tried to compile package bluez-utils-3.8-8 with the GNU C compiler version 4.3 snapshot 20070202. The compiler said sdp-xml.c:606: warning: array subscript is above array bounds The source code is for (; i < 32; i += 2) { buf[0] = data[i]; buf[1] = data[i + 1]; val.data[i] = strtoul(buf, 0, 16); but typedef struct { uint8_t data[16]; } uint128_t; So it seems that the code is trying to index 30 into an array of size 16. Suggest code rework. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=242030 chrubis@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team- |seife@novell.com |screening@forge.provo.novell| |.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=242030 seife@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=242030 ------- Comment #1 from seife@novell.com 2007-02-06 06:55 MST ------- i submitted bluez-3.9 to the buildsystem, will have to check if it still has the same problem. I assume you already reported that upstream? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=242030 ------- Comment #2 from dcb314@hotmail.com 2007-02-06 09:39 MST ------- (In reply to comment #1)
i submitted bluez-3.9 to the buildsystem, will have to check if it still has the same problem.
ok
I assume you already reported that upstream?
No. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=242030 ------- Comment #3 from seife@novell.com 2007-02-06 10:16 MST ------- There is already another report on the bluez-devel list from Denis Kenzior, he already posted a patch for this, basically - val.data[i] = strtoul(buf, 0, 16); + val.data[i >> 1] = strtoul(buf, 0, 16); which is still needed in 3.9 AFAICT and which i will apply and resubmit to the buildsystem now. Thanks for reporting. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=242030 seife@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED Fixed in Milestone|--- |Alpha 1 ------- Comment #4 from seife@novell.com 2007-02-06 10:43 MST ------- http://article.gmane.org/gmane.linux.bluez.devel/10957 is the link to the report on the bluez-devel list, just for reference. Package with the fix is submitted to the buildsystem. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
participants (1)
-
bugzilla_noreply@novell.com