Application Indicators

Coverity INTEGER_OVERFLOW - CID 10716

Bug #944234 reported by Product Strategy Coverity Bug Uploader
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Application Indicators
Fix Released
Medium
Charles Kerr
Application Indicators 0.4.93
0.4
Fix Released
Undecided
Ted Gould
Application Indicators 0.4.93

Bug Description

This bug is exported from the Coverity Integration Manager on Canonical's servers. For information on how this is done please see this website: https://wiki.ubuntu.com/CanonicalProductStrategy/Coverity
CID: 10716
Checker: INTEGER_OVERFLOW
Category: return_value_error
CWE definition: http://cwe.mitre.org/data/definitions/190.html
File: /tmp/buildd/indicator-application-0.4.91/src/generate-id.c
Function: generate_id()
Code snippet:
 64 }
 65 }
 66 }
 67
CID 10716 - INTEGER_OVERFLOW
Multiply operation overflows on operands "(category * 256 + first) * 256 + second" and "256".
Overflowed or truncated value (or a value computed from an overflowed or truncated value) "((category * 256 + first) * 256 + second) * 256 + third" used as return value.
 68 return (((((category * 256) + first) * 256) + second) * 256) + third;
 69 }

Related branches

lp://staging/~ted/indicator-application/lp944234
lp://staging/~charlesk/indicator-application/lp-944234
Charles Kerr (community): Approve
Diff: 0 lines
lp://staging/~indicator-applet-developers/ubuntu/precise/indicator-application/upstream
Ken VanDine: Pending requested
Diff: 18972 lines (+9251/-8897)
25 files modified
ChangeLog (+24/-0)
INSTALL (+7/-2)
Makefile.am (+1/-34)
Makefile.am.coverage (+48/-0)
Makefile.in (+50/-41)
aclocal.m4 (+5/-8606)
compile (+183/-16)
config.guess (+31/-18)
config.sub (+39/-26)
configure (+104/-65)
configure.ac (+5/-5)
data/Makefile.in (+5/-2)
debian/changelog (+8/-0)
depcomp (+66/-8)
install-sh (+18/-11)
m4/gcov.m4 (+13/-10)
m4/libtool.m4 (+8001/-0)
m4/ltoptions.m4 (+384/-0)
m4/ltsugar.m4 (+123/-0)
m4/ltversion.m4 (+23/-0)
m4/lt~obsolete.m4 (+98/-0)
missing (+4/-49)
src/Makefile.in (+5/-2)
src/indicator-application.c (+1/-0)
tests/Makefile.in (+5/-2)
lp://staging/ubuntu/precise/indicator-application
lp://staging/~ubuntu-desktop/indicator-application/ubuntu (Merged)
Revision history for this message
Product Strategy Coverity Bug Uploader (coverity-uploader) wrote : indicator-application-0.4: /tmp/buildd/indicator-application-0.4.91/src/generate-id.c

Source file with Coverity annotations.

Changed in indicator-application:
importance: Undecided → Medium
Ted Gould (ted)
Changed in indicator-application:
status: New → In Progress
assignee: nobody → Ted Gould (ted)
milestone: none → 0.4.91
Revision history for this message
Charles Kerr (charlesk) wrote :

Since the fix is clear (cough, famous last words) and ted is out of town until after the next scheduled release, I'm stealing this ticket from him for sweet, sweet karma.

Changed in indicator-application:
assignee: Ted Gould (ted) → charles (charlesk)
status: In Progress → Fix Committed
milestone: 0.4.91 → 0.4.93
Ted Gould (ted)
Changed in indicator-application:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.