Coverity analysis defect 121099: Untrusted loop bound

XMLWordPrintableJSON

    • Type: Bug
    • Resolution: Fixed
    • Priority: Major - P3
    • WT10.0.1, 5.2.0
    • Affects Version/s: None
    • Component/s: None
    • None
    • Storage - Ra 2021-11-29
    • 2

      Untrusted loop bound

      An attacker could control the number of times the loop iterates. An unscrutinized value from an untrusted source used as a loop bound
      /test/format/config.c:1271: TAINTED_SCALAR 121099 Calling function "fgets" taints argument "*buf".
      /test/format/config.c:1272: TAINTED_SCALAR 121099 Assigning: "p" = "t = buf". Both are now tainted.
      /test/format/config.c:1284: TAINTED_SCALAR 121099 Assigning: "t" = "p--". Both are now tainted.

              Assignee:
              Keith Bostic (Inactive)
              Reporter:
              Coverity Collector User
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: