Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Critical
Fix Version/s: rhel-9.5
Affects Version/s: rhel-9.5
Component/s: rpm
Labels:
- dev+
- patch+
- qe+

Fixed in Build:
rpm-4.16.1.3-31.el9
Regression:
None
Severity:
Moderate

Pool Team:

rhel-sst-cs-software-management
Sub-System Group:

ssg_core_services

Dev Target Milestone:
20
Internal Target Milestone:
22
Story Points:
None
Target Version:

rhel-9.5
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Sprint:
None

Acceptance Criteria:
Hide

AC: Issue from the OpenScanHub mentioned in the description is fixed.

Test: Manual verification

Find the build here: https://cov01.lab.eng.brq2.redhat.com/osh/task/

Compare the results with old build (in this case here: https://cov01.lab.eng.brq2.redhat.com/osh/task/412838/log/rpm-4.16.1.3-25.el9/scan-results.err)

Verify that the Error from description is in the old OpenScanHub run, but not the new one.
Show
AC: Issue from the OpenScanHub mentioned in the description is fixed. Test: Manual verification Find the build here: https://cov01.lab.eng.brq2.redhat.com/osh/task/ Compare the results with old build (in this case here: https://cov01.lab.eng.brq2.redhat.com/osh/task/412838/log/rpm-4.16.1.3-25.el9/scan-results.err ) Verify that the Error from description is in the old OpenScanHub run, but not the new one.
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/133184
Test Coverage:

Manual

Release Note Type:
Release Note Not Required

Experience:
Architecture:

All

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

Findings from https://issues.redhat.com/browse/RHEL-22390:

Error: UNINIT (CWE-457):
rpm-4.16.1.3/lib/rpmts.c:478: var_decl: Declaring variable "kd" without initializer.
rpm-4.16.1.3/lib/rpmts.c:537: uninit_use_in_call: Using uninitialized value "kd.signid" when calling "finiPgpData".
rpm-4.16.1.3/lib/rpmts.c:537: uninit_use_in_call: Using uninitialized value "kd.timestr" when calling "finiPgpData".
rpm-4.16.1.3/lib/rpmts.c:537: uninit_use_in_call: Using uninitialized value "kd.verid" when calling "finiPgpData".

535| headerFree(h);
536| pgpFreeDig(dig);
537|-> finiPgpData(&kd);
538| free(enc);
539| free(d);

In the unlikely case that base64 encoding of a pubkey data fails, the code will try to free uninitialized pointers.

is cloned by

RHEL-54013 Potential use of unitialized struct members in key import

Release Pending

links to

RHBA-2024:133184 rpm bug fix and enhancement update

Assignee:: Michal Domonkos

Reporter:: Panu Matilainen

Developer:: packaging-team-maint

QA Contact:: Tomas Bajer

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2024/01/24 10:52 AM

Updated:: 2024/11/12 9:55 AM

Resolved:: 2024/11/12 9:55 AM

Dev Target end:: 2024/07/15

Target end:: 2024/07/29

Release Date:: 2024/11/12

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates