[coreboot] New Defects reported by Coverity Scan for coreboot

scan-admin at coverity.com scan-admin at coverity.com
Fri Oct 12 16:28:38 CEST 2018


Please find the latest report on new defect(s) introduced to coreboot found with Coverity Scan.

1 new defect(s) introduced to coreboot found with Coverity Scan.
3 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)

** CID 1396100:  Memory - corruptions  (ARRAY_VS_SINGLETON)

*** CID 1396100:  Memory - corruptions  (ARRAY_VS_SINGLETON)
/src/lib/selfboot.c: 236 in selfload()
230     	data = rdev_mmap_full(prog_rdev(payload));
232     	if (data == NULL)
233     		return false;
235     	cbfssegs = &((struct cbfs_payload *)data)->segments;
>>>     CID 1396100:  Memory - corruptions  (ARRAY_VS_SINGLETON)
>>>     Passing "cbfssegs" to function "load_payload_segments" which uses it as an array. This might corrupt or misinterpret adjacent memory locations.
236     	if (load_payload_segments(cbfssegs, check_regions, &entry))
237     		goto out;
239     	printk(BIOS_SPEW, "Loaded segments\n");
241     	rdev_munmap(prog_rdev(payload), data);

To view the defects in Coverity Scan visit, https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRbLuoVetFLSjdonCi1EjfHRqWGQvojmmkYaBE-2BPJiTQvQ-3D-3D_q4bX76XMySz3BXBlWr5fXXJ4cvAsgEXEqC7dBPM7O5aPNVLSVuib0YHFrGR07W6WEe3JeaM4almF5Vjpbfd3gKwn9hf-2BsFJAVGl02vtJw27-2Fnc6zW1UOED2NZmlyhqZl5iCU-2BGk2pIrSp5fFPu44cX7baqS70chg2zMkIUm1pCNhY2mngryLy-2FkLN1WHdh2qW4-2FFw2XrHp5AXiL9s57V2xJA4Rbtm334tBNmmhGr4nc-3D

More information about the coreboot mailing list