[CDRIVER-2133] Coverity analysis defect 100116: Out-of-bounds access Created: 21/Apr/17  Updated: 28/Oct/23  Resolved: 28/Apr/17

Status: Closed
Project: C Driver
Component/s: libmongoc
Affects Version/s: None
Fix Version/s: 1.7.0

Type: Bug Priority: Major - P3
Reporter: Coverity Collector User Assignee: A. Jesse Jiryu Davis
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Related
is related to CDRIVER-2000 GSSAPI Authentication failure on RHEL... Closed

 Description   

Out-of-bounds access to a buffer

Defect 100116 (STATIC_C)
Checker OVERRUN (subcategory none)
File: /src/mongoc/mongoc-sasl.c
Function _mongoc_sasl_init
/src/mongoc/mongoc-sasl.c, line: 251
Overrunning array "sasl->callbacks" of 96 bytes by passing it to a function which accesses it at byte offset 119 using argument "120UL".

       memcpy (&sasl->callbacks, callbacks, sizeof callbacks);



 Comments   
Comment by Githook User [ 28/Apr/17 ]

Author:

{u'username': u'ajdavis', u'name': u'A. Jesse Jiryu Davis', u'email': u'jesse@mongodb.com'}

Message: CDRIVER-2133 array overrun in _mongoc_sasl_init
Branch: master
https://github.com/mongodb/mongo-c-driver/commit/e85551c0ae43013b0abf08110a4555e3f7fdc4f2

Generated at Wed Feb 07 21:14:17 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.