Project

General

Profile

Actions

Bug #7270

closed

yaml: Possible dereference of nullptr in case of unsuccess allocation of memory for node in yaml parser

Added by Alexey Simakov about 2 months ago. Updated about 1 month ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Effort:
low
Difficulty:
low
Label:
Beginner

Description

conf-yaml-loader.c:334 is instruction with allocation of new node, which could return nullptr in case of unsuccessful allocation and this could potentially lead to dereference of nullptr in some(pretty rare) cases

ConfNode *existing = ConfNodeLookupChild(parent, value);
                        if (existing != NULL) {
                            if (!existing->final) {
                                SCLogInfo("Configuration node '%s' redefined.", existing->name);
                                ConfNodePrune(existing);
                            }
                            node = existing;
                        } else {
                            node = ConfNodeNew(); <---- Allocation result is not checked
                            node->name = SCStrdup(value);
                            node->parent = parent;

Subtasks 1 (0 open1 closed)

Bug #7294: yaml: Possible dereference of nullptr in case of unsuccess allocation of memory for node in yaml parser (7.0.x backport)ClosedJuliana Fajardini ReichowActions
Actions

Also available in: Atom PDF