Bug 717640

Summary: Defects revealed by Coverity scan
Product: Red Hat Enterprise Linux 6 Reporter: Michal Luscon <mluscon>
Component: policycoreutilsAssignee: Daniel Walsh <dwalsh>
Status: CLOSED ERRATA QA Contact: Milos Malik <mmalik>
Severity: medium Docs Contact:
Priority: medium    
Version: 6.1CC: dwalsh, mmalik, ovasik, praiskup
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: policycoreutils-2.0.83-19.13.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-12-06 15:30:55 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Michal Luscon 2011-06-29 13:04:32 UTC 
Description of problem:

/restorecond/restorecond.c:203 - Return value of the function getpwuid is not checked to NULL.

/sepolgen-ifgen/sepolgen-ifgen-attr-helper.c:221 - Dereferencing freed pointer "p" as a result of line #214.

/policycoreutils-2.0.83/sandbox/seunshare.c:339 - File descriptor "fp" is not closed in function "setup_cgroups".

/policycoreutils-2.0.83/sandbox/seunshare.c:34 - Variable str is not freed in function setup_cgroups.

Version-Release number of selected component (if applicable):
2.0.83-19.8

Additional info:

These defects were probably introduced by Red Hat patches.
Comment 2 Daniel Walsh 2011-09-06 18:22:49 UTC 
Fixed in policycoreutils-2.0.83-19.13.el6
Comment 4 Michal Luscon 2011-09-23 09:47:52 UTC 
New Coverity scan on policycoreutils-2.0.83-19.13.el6 has confirmed the resolution of these defects.
Comment 5 Milos Malik 2011-09-23 10:04:56 UTC 
Could you run Coverity scan on policycoreutils-2.0.83-19.15.el6 which is the latest build now ?
Comment 6 Ondrej Vasik 2011-09-23 10:47:18 UTC 
We are doing rescans biweekly, next rescan will be next week.
Comment 14 errata-xmlrpc 2011-12-06 15:30:55 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2011-1637.html