cppcheck analysis of syslinux_4.02+dfsg-7.dsc
- ./com32/gfxboot/gfxboot.c:759 [error] - Common realloc mistake: "buf" nulled but not freed upon failure
- ./com32/gpllib/disk/write.c:118 [error] - Memory leak: rb
- ./com32/gpllib/dmi/dmi_memory.c:200 [error] - Undefined behaviour: type is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
- ./com32/gpllib/dmi/dmi_memory.c:212 [error] - Undefined behaviour: connection is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
- ./com32/gpllib/dmi/dmi_memory.c:242 [error] - Undefined behaviour: size is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
- ./com32/gpllib/dmi/dmi_memory.c:244 [error] - Undefined behaviour: size is used wrong in call to sprintf or snprintf. Quote: If copying takes place between objects that overlap as a result of a call to sprintf() or snprintf(), the results are undefined.
- ./com32/hdt/hdt-cli.c:616 [error] - Memory leak: command
- ./com32/hdt/hdt-cli.c:616 [error] - Memory leak: module
- ./com32/lib/sys/vesa/background.c:445 [error] - Deallocating a deallocated pointer: fp
- ./com32/mboot/mem.c:95 [error] - Common realloc mistake: "ard" nulled but not freed upon failure
- ./com32/modules/chain.c:916 [error] - Buffer access out-of-bounds: gpt_candidate.sig
- ./com32/modules/ethersel.c:187 [error] - Resource leak: f
- ./com32/modules/linux.c:215 [error] - Memory leak: cmdline
- ./com32/sysdump/cpuid.c:70 [error] - Common realloc mistake: "buf" nulled but not freed upon failure
- ./com32/sysdump/memmap.c:47 [error] - Common realloc mistake: "buf" nulled but not freed upon failure
- ./com32/tools/relocs.c:692 [error] - Resource leak: fp
- ./gpxe/src/core/iobuf.c:50 [error] - Null pointer dereference
- ./gpxe/src/core/iobuf.c:51 [error] - Null pointer dereference
- ./gpxe/src/crypto/chap.c:67 [error] - Data is allocated but not initialized: state
- ./gpxe/src/drivers/infiniband/arbel.c:752 [error] - Uninitialized variable: wqe
- ./gpxe/src/drivers/net/ath5k/ath5k_desc.c:106 [style] - Redundant assignment of "frame_type" in switch
- ./gpxe/src/drivers/net/sundance.c:329 [error] - Array 'rx_ring[4]' index 4 out of bounds
- ./gpxe/src/hci/mucurses/windows.c:58 [error] - Memory leak: child
- ./gpxe/src/hci/mucurses/windows.c:127 [error] - Memory leak: win
- ./gpxe/src/net/80211/net80211.c:1595 [error] - Possible null pointer dereference: ctx - otherwise it is redundant to check if ctx is null at line 1597
- ./gpxe/src/net/ipv4.c:626 [error] - Memory leak: miniroute
- ./gpxe/src/net/ipv6.c:114 [error] - Memory leak: miniroute
- ./gpxe/src/net/tls.c:1104 [error] - Data is allocated but not initialized: plaintext
- ./gpxe/src/util/elf2efi.c:352 [error] - Uninitialized variable: data_start
- ./libfat/searchdir.c:45 [error] - Buffer access out-of-bounds: direntry.entry
- ./linux/syslinux.c:122 [error] - Uninitialized variable: loop_fd
- ./memdisk/conio.c:161 [error] - Array 'digits[17]' index 33 out of bounds
- ./mtools/syslinux.c:370 [error] - Resource leak: mtp
Note: if you think the results reveal a security bug,
please don't hesitate to contact the
security team
This report was generated on Mon, 20 Dec 2010 21:18:55 +0000, based on results by cppcheck 1.46
Automated Code Analysis