Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-34823

cil_resolve_ast.c:3157: assignment: Assigning: "sym_index" = "CIL_SYM_UNKNOWN" el10

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Normal Normal
    • rhel-10.0
    • rhel-10.0.beta
    • libsepol
    • None
    • libsepol-3.7-4.el10
    • None
    • Low
    • 2
    • rhel-security-selinux
    • ssg_security
    • 26
    • 3
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • SELINUX 241016 - 241106, SELINUX 241106 - 241127
    • Hide

      The source code is fixed in such a way that Coverity scan does not find this error in that area.

      Show
      The source code is fixed in such a way that Coverity scan does not find this error in that area.
    • Pass
    • Manual
    • Release Note Not Required
    • None 

      Error: OVERRUN (CWE-119):
libsepol-3.6/cil/src/cil_resolve_ast.c:3157: assignment: Assigning: "sym_index" = "CIL_SYM_UNKNOWN".
libsepol-3.6/cil/src/cil_resolve_ast.c:3189: overrun-call: Overrunning callee's array of size 19 by passing argument "sym_index" (which evaluates to 20) in call to "cil_resolve_name".
# 3187|                   switch (curr->flavor) {
# 3188|                   case CIL_STRING:
# 3189|->                         rc = cil_resolve_name(parent, curr->data, sym_index, db, &res_datum);
# 3190|                           if (rc != SEPOL_OK) {
# 3191|                                   goto exit;

              vmojzis@redhat.com Vit Mojzis
              rhn-engineering-plautrba Petr Lautrbach
              Vit Mojzis Vit Mojzis
              Milos Malik Milos Malik
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: