https://bugs.openldap.org/show_bug.cgi?id=10318
Issue ID: 10318 Summary: Potential null-pointer-dereference in servers/slapd/connection.c Product: OpenLDAP Version: 2.5.6 Hardware: All OS: All Status: UNCONFIRMED Keywords: needs_review Severity: normal Priority: --- Component: slapd Assignee: bugs@openldap.org Reporter: 1367173408@qq.com Target Milestone: ---
Created attachment 1056 --> https://bugs.openldap.org/attachment.cgi?id=1056&action=edit execution trace
Hi, I have found a potential null pointer dereference bug in the project and would like to report it to the maintainers.
At line 267 and line 284 in file `servers/slapd/connection.c`, the function `connection_get` may return NULL.
Then, at line 1239 in the same file, the pointer `c` receives the return value, which may be NULL. But `c` is dereferenced at following lines without checking, which may lead to a null-pointer-dereference bug.