Text  |   XML   |   Visible Warnings:

pvm3.4.6 : pvm3.4.6 analysis 2 : Integer Overflow of Allocation Size  at ddpro.c:2833

Categories: ALLOC.IOAS BSI:MALLOC-OVERFLOW CWE:680
Warning ID: 162.28784
Procedure: dm_mca
Trace: view
Modified: Thu Nov 26 11:27:55 2009   show details
 
Priority: None
State: None
Finding: None
Owner: None
  edit properties

Legend [ X ]
Warning Location
Contributes
Parse Error
Other Warning
Two or More Loop Iterations
On Execution Path
Comment
Macro
Preprocessor
Include
Keyword
Preprocessed Away
Legend
Warning Location Contributes Parse Error
Other Warning Two or More Loop Iterations On Execution Path
Comment Macro Preprocessor
Include Keyword Preprocessed Away

Source  |  Language: C Hide Legend     
ProblemLineSource
   /kat0/fletcher/SATE/2010/pvm3/src/ddpro.c
   Enter dm_mca
 2821 dm_mca(hp, mp) 
 2822         struct hostd *hp;
 2823         struct pmsg *mp;
 2824 {
 2825         struct mca *mcap;
 2826         int i;
 2827  
 2828         /* unpack struct mca from message */ 
 2829  
 2830         mcap = mca_new();
 2831         upkuint(mp, &mcap->mc_tid);
 2832         upkint(mp, &mcap->mc_ndst);
true2833         mcap->mc_dsts = TALLOC(mcap->mc_ndst, int, "mcad");     /* Integer Overflow of Allocation Size */  /* Null Pointer Dereference (ID: 163.28785) */
Preconditions 
$input_12 = 0
Postconditions 
$heap_69318' = &$heap_69318
bytes_after(&$heap_69318)' = 20
$heap_69318' is allocated by malloc
bytes_before(&$heap_69318)' = 0
((char*)&$heap_69318)[16]' = 0
((char*)&$heap_69318)[4]' = &$heap_69318
mcap' = &$heap_69318



Change Warning 162.28784 : Integer Overflow of Allocation Size

Priority:
State:
Finding:
Owner:
Note: