[Issue 10318] New: Potential null-pointer-dereference in servers/slapd/connection.c

10 Mar 2025


      https://bugs.openldap.org/show_bug.cgi?id=10318
Issue ID: 10318
           Summary: Potential null-pointer-dereference in
                    servers/slapd/connection.c
           Product: OpenLDAP
           Version: 2.5.6
          Hardware: All
                OS: All
            Status: UNCONFIRMED
          Keywords: needs_review
          Severity: normal
          Priority: ---
         Component: slapd
          Assignee: bugs@openldap.org
          Reporter: 1367173408@qq.com
  Target Milestone: ---
Created attachment 1056
  --> https://bugs.openldap.org/attachment.cgi?id=1056&action=edit
execution trace
Hi, I have found a potential null pointer dereference bug in the project and
would like to report it to the maintainers.
At line 267 and line 284 in file `servers/slapd/connection.c`, the function
`connection_get` may return NULL.
Then, at line 1239 in the same file, the pointer `c` receives the return value,
which may be NULL. But `c` is dereferenced at following lines without checking,
which may lead to a null-pointer-dereference bug.
-- 
You are receiving this mail because:
You are on the CC list for the issue.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[Issue 10318] New: Potential null-pointer-dereference in servers/slapd/connection.c