Uploaded image for project: 'Fast Datapath Product'
  1. Fast Datapath Product
  2. FDP-3386

[RHEL-9 OVS-3.3] Use after free in ovsdb

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • openvswitch3.3
    • None
    • [RHEL-9 OVS-3.3] Use after free in ovsdb
    • 0
    • False
    • False
    • To Do
    • openvswitch3.3-3.3.8-6.el9fdp
    • rhel-9
    • None
    • rhel-net-ovs-dpdk
    • ssg_networking

      Scanhub found the following issue

       3. ovsdb/ovsdb-server.c:505:5:
 freed_arg: "shash_replace_nocopy" frees "filename".
6. ovsdb/ovsdb-server.c:507:9:
 pass_freed_arg: Passing freed pointer "filename" as an argument to 
"vlog".
 #   505|       conf = shash_replace_nocopy(db_conf, filename, conf);
 #   506|       if (conf) {
 #   507|->         VLOG_WARN("Duplicate database configuration: %s", filename);
 #   508|           db_config_destroy(conf);
 #   509|       }

      This appears to be a true positive.

              rh-ee-mpattric Mike Pattrick
              rh-ee-mpattric Mike Pattrick
              Hekai Wang Hekai Wang
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: