New Defects reported by Coverity Scan for LibreOffice

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi,

Please find the latest report on new defect(s) introduced to LibreOffice found with Coverity Scan.

2 new defect(s) introduced to LibreOffice found with Coverity Scan.
49 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 2 of 2 defect(s)


** CID 1559857:  Memory - corruptions  (OVERRUN)
/sd/source/filter/eppt/pptx-epptbase.cxx: 434 in PPTWriterBase::GetLayout(int)()


________________________________________________________________________________________________________
*** CID 1559857:  Memory - corruptions  (OVERRUN)
/sd/source/filter/eppt/pptx-epptbase.cxx: 434 in PPTWriterBase::GetLayout(int)()
428         return pPHLayout[ GetLayoutOffsetFixed( rXPropSet ) ];
429     }
430     
431     PHLayout const & PPTWriterBase::GetLayout( sal_Int32 nOffset )
432     {
433         if( nOffset >= 0 && nOffset < EPP_LAYOUT_SIZE )
>>>     CID 1559857:  Memory - corruptions  (OVERRUN)
>>>     "pPHLayout[nOffset]" evaluates to an address that is at byte offset 700 of an array of 500 bytes.
434             return pPHLayout[ nOffset ];
435     
436         SAL_INFO("sd.eppt", "asked " << nOffset << " for layout outside of 0, " << EPP_LAYOUT_SIZE  << " array scope");
437     
438         return pPHLayout[ 0 ];
439     }

** CID 1559856:  Null pointer dereferences  (FORWARD_NULL)
/sfx2/source/view/viewfrm.cxx: 2551 in SfxViewFrame::SwitchToViewShell_Impl(unsigned short, bool)()


________________________________________________________________________________________________________
*** CID 1559856:  Null pointer dereferences  (FORWARD_NULL)
/sfx2/source/view/viewfrm.cxx: 2551 in SfxViewFrame::SwitchToViewShell_Impl(unsigned short, bool)()
2545             SfxObjectFactory& rDocFact = GetObjectShell()->GetFactory();
2546             const SfxInterfaceId nViewId = ( bIsIndex || !nViewIdOrNo ) ? rDocFact.GetViewFactory( nViewIdOrNo ).GetOrdinal() : SfxInterfaceId(nViewIdOrNo);
2547     
2548             // save the view data of the old view, so it can be restored later on (when needed)
2549             SaveCurrentViewData_Impl( nViewId );
2550     
>>>     CID 1559856:  Null pointer dereferences  (FORWARD_NULL)
>>>     Passing null pointer "pOldSh" to "SetDying", which dereferences it. (The dereference happens because this is a virtual function call.)
2551             pOldSh->SetDying();
2552     
2553             // create and load new ViewShell
2554             SfxViewShell* pNewSh = LoadViewIntoFrame_Impl(
2555                 *GetObjectShell(),
2556                 GetFrame().GetFrameInterface(),


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50ypSs1kiFPuCn2xFdlMIFBirii0zZ9j2-2F9F2XPBcBm2BNnPiSHxWPOELPnIxzXoBNaw-3D7U63_OTq2XUZbbipYjyLSo6GRo-2FpVxQ9OzkDINu9UTS-2FQhSdO0F0jQniitrGlNxDIzPJi3kiqkTfWIAMClNn6pAvWk2hXxzsNdrgaYZbALoaTa1-2Biq7JePOTZbSgFFo-2F6j9-2FucNjekMO5b5PWZ9K50-2FFfifv6XhUPZlKcRNzCkwaDmGyQWDIAgoVC5fsVmt9-2FGJ8vnJ2LKLsnwjMhNfARuosk-2B1V7dFJMI9S9nD1Ia-2F7gEEI-3D
[Index of Archives]     [LARTC]     [Bugtraq]     [Yosemite Forum]     [Photo]

  Powered by Linux