https://bugs.openldap.org/show_bug.cgi?id=10318
Issue ID: 10318 Summary: Potential null-pointer-dereference in servers/slapd/connection.c Product: OpenLDAP Version: 2.5.6 Hardware: All OS: All Status: UNCONFIRMED Keywords: needs_review Severity: normal Priority: --- Component: slapd Assignee: bugs@openldap.org Reporter: 1367173408@qq.com Target Milestone: ---
Created attachment 1056 --> https://bugs.openldap.org/attachment.cgi?id=1056&action=edit execution trace
Hi, I have found a potential null pointer dereference bug in the project and would like to report it to the maintainers.
At line 267 and line 284 in file `servers/slapd/connection.c`, the function `connection_get` may return NULL.
Then, at line 1239 in the same file, the pointer `c` receives the return value, which may be NULL. But `c` is dereferenced at following lines without checking, which may lead to a null-pointer-dereference bug.
https://bugs.openldap.org/show_bug.cgi?id=10318
Howard Chu hyc@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Resolution|--- |INVALID
--- Comment #1 from Howard Chu hyc@openldap.org --- No, that never happens. connection_client_stop() is only called with a valid socket.
https://bugs.openldap.org/show_bug.cgi?id=10318
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |VERIFIED Keywords|needs_review |