https://bugs.openldap.org/show_bug.cgi?id=9482
Issue ID: 9482 Summary: slapi_int_get_plugins() may return uninitialized data Product: OpenLDAP Version: unspecified Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: slapd Assignee: bugs@openldap.org Reporter: grapvar@gmail.com Target Milestone: ---
... because
if ( be == NULL ) { goto done; }
returns before output variable ppFuncPtrs has been initialized. This may be not affect openldap code, but, if I understand correctly, slapi_int_get_plugins() is part of api and may affect 3rd party.
https://bugs.openldap.org/show_bug.cgi?id=9482
--- Comment #1 from Konstantin Andreev grapvar@gmail.com --- Created attachment 798 --> https://bugs.openldap.org/attachment.cgi?id=798&action=edit fix
https://bugs.openldap.org/show_bug.cgi?id=9482
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Keywords| |needs_review
https://bugs.openldap.org/show_bug.cgi?id=9482
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Target Milestone|--- |2.5.3 Keywords|needs_review | Assignee|bugs@openldap.org |quanah@openldap.org
https://bugs.openldap.org/show_bug.cgi?id=9482
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |IN_PROGRESS Ever confirmed|0 |1
--- Comment #2 from Quanah Gibson-Mount quanah@openldap.org --- https://git.openldap.org/openldap/openldap/-/merge_requests/276
https://bugs.openldap.org/show_bug.cgi?id=9482
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|IN_PROGRESS |RESOLVED
--- Comment #3 from Quanah Gibson-Mount quanah@openldap.org --- Commits: • 180f5b62 by Quanah Gibson-Mount at 2021-03-09T20:49:42+00:00 ITS#9482 - Fix possiblity of uninitialized data being returned in slapi plugin
https://bugs.openldap.org/show_bug.cgi?id=9482
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |VERIFIED
-
openldap-its@openldap.org