GNU bug report logs - #71535
multiple defects found by covscan in diffutils-3.10

Previous Next

Package: diffutils;

Reported by: Wasser Mai <wasser19641 <at> gmail.com>

Date: Thu, 13 Jun 2024 13:16:02 UTC

Severity: normal

Done: Paul Eggert <eggert <at> cs.ucla.edu>

Bug is archived. No further changes may be made.

Full log

Message #19 received at 71535-done <at> debbugs.gnu.org (full text, mbox):

From: Bruno Haible <bruno <at> clisp.org>
To: bug-gnulib <at> gnu.org, Paul Eggert <eggert <at> cs.ucla.edu>
Cc: 71535-done <at> debbugs.gnu.org, Wasser Mai <wasser19641 <at> gmail.com>
Subject: Re: [bug-diffutils] bug#71535: multiple defects found by covscan in
 diffutils-3.10
Date: Thu, 20 Jun 2024 08:10:08 +0200

Hi Paul,

> I installed the attached patch into Gnulib 
> to fix the bug, which appears to be so unlikely that it's not worth 
> losing sleep over.

Thanks! I've propagated it to GNU libsigsegv.

> As near as I can make out, this was the only defect report by Coverity 
> that was not a false alarm.

Well, from my point of view, since the file being read is from the /proc
file system, I assume that such synthetic files constructed by the
kernel are small (in the range of < 16 KB). Anyway, if it helps avoid
an alarm from static code analysis tools, the better.

Bruno
This bug report was last modified 1 year and 30 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.