Potentially invalid memory accesses drivers/message/fusion/mptbase.c
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: DL-MPTFusionLinux@xxxxxxx, MPT-FusionLinux.pdl@xxxxxxxxxxxx, linux-scsi@xxxxxxxxxxxxxxx
- Subject: Potentially invalid memory accesses drivers/message/fusion/mptbase.c
- From: Shaobo <shaobo@xxxxxxxxxxx>
- Date: Thu, 20 Jul 2017 17:28:49 -0600
- Cc: kashyap.desai@xxxxxxx
- User-agent: Roundcube Webmail/1.2.5
Hi there,
My name is Shaobo He and I am a graduate student at University of Utah.
I am using a static analysis tool to search for null pointer
dereferences and came across a couple of potentially invalid memory
accesses in the file drivers/message/fusion/mptbase.c: in function
`mpt_turbo_reply`, variable `mf` is initialized to NULL. If the case
`MPI_CONTEXT_REPLY_TYPE_SCSI_TARGET` is taken, then `mf` is not updated
to a non-NULL value and then may get dereferenced in function
`mpt_free_msg_frame`. However, there are a couple of conditions that can
make the error path infeasible. I was wondering if you could confirm
this.
Please let me know if it makes sense. I am looking forward to your
reply.
Best,
Shaobo
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]
[SCSI Target Devel]
[Linux SCSI Target Infrastructure]
[Kernel Newbies]
[IDE]
[Security]
[Git]
[Netfilter]
[Bugtraq]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Linux ATA RAID]
[Linux IIO]
[Samba]
[Device Mapper]
