717640 – Defects revealed by Coverity scan

Bug 717640 - Defects revealed by Coverity scan

Summary: Defects revealed by Coverity scan

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	policycoreutils
Sub Component:
Version:	6.1
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Daniel Walsh
QA Contact:	Milos Malik
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2011-06-29 13:04 UTC by Michal Luscon
Modified:	2011-12-06 15:30 UTC (History)
CC List:	4 users (show)
Fixed In Version:	policycoreutils-2.0.83-19.13.el6
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2011-12-06 15:30:55 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2011:1637	0	normal	SHIPPED_LIVE	policycoreutils bug fix and enhancement update	2011-12-06 00:50:40 UTC

Description Michal Luscon 2011-06-29 13:04:32 UTC

Description of problem:

/restorecond/restorecond.c:203 - Return value of the function getpwuid is not checked to NULL.

/sepolgen-ifgen/sepolgen-ifgen-attr-helper.c:221 - Dereferencing freed pointer "p" as a result of line #214.

/policycoreutils-2.0.83/sandbox/seunshare.c:339 - File descriptor "fp" is not closed in function "setup_cgroups".

/policycoreutils-2.0.83/sandbox/seunshare.c:34 - Variable str is not freed in function setup_cgroups.

Version-Release number of selected component (if applicable):
2.0.83-19.8

Additional info:

These defects were probably introduced by Red Hat patches.

Comment 2 Daniel Walsh 2011-09-06 18:22:49 UTC

Fixed in policycoreutils-2.0.83-19.13.el6

Comment 4 Michal Luscon 2011-09-23 09:47:52 UTC

New Coverity scan on policycoreutils-2.0.83-19.13.el6 has confirmed the resolution of these defects.

Comment 5 Milos Malik 2011-09-23 10:04:56 UTC

Could you run Coverity scan on policycoreutils-2.0.83-19.15.el6 which is the latest build now ?

Comment 6 Ondrej Vasik 2011-09-23 10:47:18 UTC

We are doing rescans biweekly, next rescan will be next week.

Comment 14 errata-xmlrpc 2011-12-06 15:30:55 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2011-1637.html

Note You need to log in before you can comment on or make changes to this bug.