Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Critical
Fix Version/s: rhel-10.0.beta
Affects Version/s: rhel-10.0.beta
Component/s: rpm
Labels:
- dev+
- patch+
- qe+

Fixed in Build:
rpm-4.19.1.1-3.el10
Regression:
None
Severity:
Moderate

Pool Team:

sst_cs_software_management
Sub-System Group:

ssg_core_services

Dev Target Milestone:
24
Internal Target Milestone:
26
Story Points:
None
Target Version:

rhel-10.0.beta
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Sprint:
None

Acceptance Criteria:
Hide

AC: Issue from the OpenScanHub mentioned in the description is fixed.

Test: Manual verification

Find the build here: https://cov01.lab.eng.brq2.redhat.com/osh/task/

Compare the results with old build (in this case here: https://cov01.lab.eng.brq2.redhat.com/osh/task/412838/log/rpm-4.16.1.3-25.el9/scan-results.err)

Verify that the Error from description is in the old OpenScanHub run, but not the new one.
Show
AC: Issue from the OpenScanHub mentioned in the description is fixed. Test: Manual verification Find the build here: https://cov01.lab.eng.brq2.redhat.com/osh/task/ Compare the results with old build (in this case here: https://cov01.lab.eng.brq2.redhat.com/osh/task/412838/log/rpm-4.16.1.3-25.el9/scan-results.err ) Verify that the Error from description is in the old OpenScanHub run, but not the new one.
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/136294
Test Coverage:

Automated

Release Note Type:
Release Note Not Required

Experience:
Architecture:

All

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

Findings from https://issues.redhat.com/browse/RHEL-22390:

Error: UNINIT (CWE-457):
rpm-4.16.1.3/lib/rpmts.c:478: var_decl: Declaring variable "kd" without initializer.
rpm-4.16.1.3/lib/rpmts.c:537: uninit_use_in_call: Using uninitialized value "kd.signid" when calling "finiPgpData".
rpm-4.16.1.3/lib/rpmts.c:537: uninit_use_in_call: Using uninitialized value "kd.timestr" when calling "finiPgpData".
rpm-4.16.1.3/lib/rpmts.c:537: uninit_use_in_call: Using uninitialized value "kd.verid" when calling "finiPgpData".

535| headerFree(h);
536| pgpFreeDig(dig);
537|-> finiPgpData(&kd);
538| free(enc);
539| free(d);

In the unlikely case that base64 encoding of a pubkey data fails, the code will try to free uninitialized pointers.

clones

RHEL-22605 Potential use of unitialized struct members in key import

Release Pending

links to

RHBA-2024:136294 rpm bug fix and enhancement update

Assignee:: Michal Domonkos

Reporter:: Panu Matilainen

Developer:: packaging-team-maint

QA Contact:: Tomas Bajer

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/08/12 4:06 PM

Updated:: 2024/09/23 2:37 PM

Dev Target end:: 2024/08/12

Target end:: 2024/08/26

Details

Description

Attachments

Issue Links

Activity

People

Dates