htop

A potential bug of use of uninitialised variable

Bug #1813556 reported by Rongxin on 2019-01-28

260

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	htop	New	Unknown	auto-github-hishamhm-htop #882
	htop (Ubuntu)	Fix Released	Low	Unassigned

Bug Description

Please refer to the git repository of htop, the bug is https://github.com/hishamhm/htop/issues/882

In InfoScreen.c file, there is a potential use of uninitialised variable bug. In Line 133, it calls the function getmouse(&mevent) and mevent may be uninitialised after the function return. As we can see below, the library function getmouse would return ERR without initialising its parameter aevent (when the path condition at Line 1761-1764 is false, it will directly return ERR and not initialise aevent). Then, in the file InfoScreen.c, at Line 133, the path condition is false, and the Line 133-136 will not be executed. However, the Line 137, "if (mevent.y == LINES - 1)" will be executed, and mevent.y is not initialised at all. I guess there is a missing "else" in Line 137, which is the root cause of this bug.

Revision history for this message

Rongxin (wurongxin1987) wrote on 2019-01-28:

The code snippet of the function InfoScreen_run Edit (250.9 KiB, image/png)

Revision history for this message

Rongxin (wurongxin1987) wrote on 2019-01-28:

The code snippet of the library function getmouse Edit (166.6 KiB, image/png)

Marc Deslauriers (mdeslaur) on 2019-03-07

information type:	Private Security → Public Security
Changed in htop (Ubuntu):
status:	New → Confirmed

Bug Watch Updater (bug-watch-updater) on 2019-03-07

Changed in htop:
status:	Unknown → New

Revision history for this message

Christian Ehrhardt  (paelzer) wrote on 2019-03-08:

Thanks for opening the upstream issue as well, it is sad that no one there is replying or merging your change as the preferred way would be to grab a new version of it.