Bug #7270: conf: nullptr dereference if mem alloc fails for a node in yaml parser - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #7270

closed

conf: nullptr dereference if mem alloc fails for a node in yaml parser

Added by Alexey Simakov 5 months ago. Updated 2 months ago.

Status:

Closed

Priority:

Normal

Assignee:

Alexey Simakov

Target version:

8.0.0-beta1

Affected Versions:

git master

Effort:

low

Difficulty:

low

Label:

Beginner

Description

conf-yaml-loader.c:334 is instruction with allocation of new node, which could return nullptr in case of unsuccessful allocation and this could potentially lead to dereference of nullptr in some(pretty rare) cases

ConfNode *existing = ConfNodeLookupChild(parent, value);
                        if (existing != NULL) {
                            if (!existing->final) {
                                SCLogInfo("Configuration node '%s' redefined.", existing->name);
                                ConfNodePrune(existing);
                            }
                            node = existing;
                        } else {
                            node = ConfNodeNew(); <---- Allocation result is not checked
                            node->name = SCStrdup(value);
                            node->parent = parent;

Subtasks 1 (0 open — 1 closed)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #7270

conf: nullptr dereference if mem alloc fails for a node in yaml parser

Updated by Jason Ish 5 months ago

Updated by Jason Ish 5 months ago

Updated by Philippe Antoine 5 months ago

Updated by OISF Ticketbot 5 months ago

Updated by OISF Ticketbot 5 months ago

Updated by Juliana Fajardini Reichow 4 months ago

Updated by Juliana Fajardini Reichow 4 months ago

Updated by Juliana Fajardini Reichow 2 months ago