Text  |   XML   |   Visible Warnings:

pvm3.4.6 : pvm3.4.6 analysis 2 : Integer Overflow of Allocation Size  at lpvmpack.c:295

Categories: ALLOC.IOAS BSI:MALLOC-OVERFLOW CWE:680
Warning ID: 332.29011
Procedure: mid_new
Trace: view
Modified: Thu Nov 26 11:29:31 2009   show details
 
Priority: None
State: None
Finding: None
Owner: None
  edit properties

Legend [ X ]
Warning Location
Contributes
Parse Error
Other Warning
Two or More Loop Iterations
On Execution Path
Comment
Macro
Preprocessor
Include
Keyword
Preprocessed Away
Legend
Warning Location Contributes Parse Error
Other Warning Two or More Loop Iterations On Execution Path
Comment Macro Preprocessor
Include Keyword Preprocessed Away

Source  |  Language: C Hide Legend     
ProblemLineSource
   /kat0/fletcher/SATE/2010/pvm3/src/lpvmpack.c
   Enter mid_new
&$unknown_1151276 overflowed279 mid_new(mp) 
 280         struct pmsg *mp;
 281 {
 282         static int nxtmidhsiz;
 283         int mid;
 284         int ns;
 285         struct mhp *newh;
 286  
 287         /* check free list empty */ 
 288  
&$unknown_1151277 overflowed289         if (!pvmmidhfree) {
 290  
 291         /* extend midh array */ 
 292  
&$unknown_1151278 overflowed293                 if (pvmmidhsiz) {
&$unknown_1151279 overflowed294                         ns = nxtmidhsiz;
&$unknown_1151280 overflowed295                         if (!(newh = TREALLOC(pvmmidh, ns, struct mhp)))     /* Integer Overflow of Allocation Size */
Preconditions 
&$unknown_1151281 != 0
&$unknown_1151281 = 8 * nxtmidhsiz
pvmmidh != 0
pvmmidhfree = 0
pvmmidhsiz != 0
Postconditions 
ns' = nxtmidhsiz



Change Warning 332.29011 : Integer Overflow of Allocation Size

Priority:
State:
Finding:
Owner:
Note: