Hi,

Please find the latest report on new defect(s) introduced to coreboot found with Coverity Scan.

1 new defect(s) introduced to coreboot found with Coverity Scan. 1 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan Showing 1 of 1 defect(s)

** CID 1400443: Insecure data handling (INTEGER_OVERFLOW) /src/arch/x86/smbios.c: 537 in smbios_write_type2()

________________________________________________________________________________________________________ *** CID 1400443: Insecure data handling (INTEGER_OVERFLOW) /src/arch/x86/smbios.c: 537 in smbios_write_type2() 531 t->location_in_chassis = smbios_add_string(t->eos, 532 smbios_mainboard_location_in_chassis()); 533 t->board_type = smbios_mainboard_board_type(); 534 t->chassis_handle = chassis_handle; 535 len = t->length + smbios_string_table_len(t->eos); 536 *current += len;

...

...

CID 1400443:  Insecure data handling  (INTEGER_OVERFLOW)
Overflowed or truncated value (or a value computed from an overflowed or truncated value) "len" used as return value.

537 return len; 538 } 539 540 static int smbios_write_type3(unsigned long *current, int handle) 541 { 542 struct smbios_type3 *t = (struct smbios_type3 *)*current;

________________________________________________________________________________________________________ To view the defects in Coverity Scan visit, https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05...