[Bugme-new] [Bug 13517] New: array index out of bounds
bugzilla-daemon at bugzilla.kernel.org
bugzilla-daemon at bugzilla.kernel.org
Fri Jun 12 01:44:31 PDT 2009
http://bugzilla.kernel.org/show_bug.cgi?id=13517
Summary: array index out of bounds
Product: Drivers
Version: 2.5
Kernel Version: 2.6.30
Platform: All
OS/Version: Linux
Tree: Mainline
Status: NEW
Severity: normal
Priority: P1
Component: Network
AssignedTo: drivers_network at kernel-bugs.osdl.org
ReportedBy: ettl.martin at gmx.de
Regression: No
Hello,
i have detected an array index out of bounds in file 3c523.c. I used the static
code analyis tool cppcheck to find this issue. It prints the following output:
[linux-2.6.30/drivers/net/3c523.c:1117]: (all) Array index out of bounds
[linux-2.6.30/drivers/net/3c523.c:1104]: (all) Array index out of bounds
Take a look at the code(line 1104):
printk("%s: X0: %04x N0: %04x N1: %04x %d\n", dev->name, (int)
p->xmit_cmds[0]->cmd_status, (int) p->nop_cmds[0]->cmd_status, (int)
p->nop_cmds[1]->cmd_status, (int) p->nop_point);
cppcheck mentions that "p->nop_cmds[1]->cmd_status" is wrong because the
#define
NUM_XMIT_BUFFS is set to 1 (see line 158).
Best regards
Ettl Martin
--
Configure bugmail: http://bugzilla.kernel.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the Bugme-new
mailing list