Bug #7270: yaml: Possible dereference of nullptr in case of unsuccess allocation of memory for node in yaml parser - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #7270

closed

yaml: Possible dereference of nullptr in case of unsuccess allocation of memory for node in yaml parser

Added by Alexey Simakov about 1 month ago. Updated 15 days ago.

Status:

Closed

Priority:

Normal

Assignee:

Alexey Simakov

Target version:

8.0.0-beta1

Affected Versions:

git master

Effort:

low

Difficulty:

low

Label:

Beginner

Description

conf-yaml-loader.c:334 is instruction with allocation of new node, which could return nullptr in case of unsuccessful allocation and this could potentially lead to dereference of nullptr in some(pretty rare) cases

ConfNode *existing = ConfNodeLookupChild(parent, value);
                        if (existing != NULL) {
                            if (!existing->final) {
                                SCLogInfo("Configuration node '%s' redefined.", existing->name);
                                ConfNodePrune(existing);
                            }
                            node = existing;
                        } else {
                            node = ConfNodeNew(); <---- Allocation result is not checked
                            node->name = SCStrdup(value);
                            node->parent = parent;

Subtasks 1 (0 open — 1 closed)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #7270

yaml: Possible dereference of nullptr in case of unsuccess allocation of memory for node in yaml parser

Updated by Jason Ish about 1 month ago

Updated by Jason Ish about 1 month ago

Updated by Philippe Antoine about 1 month ago

Updated by OISF Ticketbot about 1 month ago

Updated by OISF Ticketbot about 1 month ago

Updated by Juliana Fajardini Reichow 16 days ago

Updated by Juliana Fajardini Reichow 15 days ago