2013-01-16 23:41:54 |
Product Strategy Coverity Bug Uploader |
bug |
|
|
added bug |
2013-01-16 23:41:56 |
Product Strategy Coverity Bug Uploader |
nominated for series |
|
bamf/0.4 |
|
2013-01-16 23:41:56 |
Product Strategy Coverity Bug Uploader |
bug task added |
|
bamf/0.4 |
|
2013-01-16 23:41:58 |
Product Strategy Coverity Bug Uploader |
bamf: importance |
Undecided |
Low |
|
2013-01-16 23:41:59 |
Product Strategy Coverity Bug Uploader |
attachment added |
|
bamf-trunk: /tmp/buildd/bamf-0.4.0daily13.01.11/src/bamf-legacy-window.c https://bugs.launchpad.net/bugs/1100551/+attachment/3485447/+files/coverity-annotations.html |
|
2013-04-17 04:23:49 |
Launchpad Janitor |
branch linked |
|
lp:~3v1n0/bamf/rematch-memleak-fix |
|
2013-04-17 04:23:56 |
Marco Trevisan (Treviño) |
bamf/0.4: assignee |
|
Marco Trevisan (Treviño) (3v1n0) |
|
2013-04-17 04:23:58 |
Marco Trevisan (Treviño) |
bamf/0.4: milestone |
|
0.4.0 |
|
2013-04-17 04:24:01 |
Marco Trevisan (Treviño) |
bamf/0.4: status |
New |
In Progress |
|
2013-04-17 16:34:25 |
PS Jenkins bot |
bamf: status |
In Progress |
Fix Committed |
|
2013-05-03 18:30:20 |
Launchpad Janitor |
bamf (Ubuntu): status |
New |
Fix Released |
|
2013-05-08 11:42:15 |
Timo Jyrinki |
description |
This bug is exported from the Coverity Integration Manager on Canonical's servers. For information on how this is done please see this website: https://wiki.ubuntu.com/CanonicalProductStrategy/Coverity
CID: 10450
Checker: SECURE_TEMP
Category: No category available
CWE definition: http://cwe.mitre.org/data/definitions/377.html
File: /tmp/buildd/bamf-0.4.0daily13.01.11/src/bamf-legacy-window.c
Function: bamf_legacy_window_save_mini_icon
Code snippet:
217
218 if (wnck_window_get_icon_is_fallback (window))
219 return NULL;
220
CID 10450 - SECURE_TEMP
{CovLStrv2{{t{{0} creates files with predictable names, which is unsafe.}{"tmpnam(char *)"}}}}
221 tmp = tmpnam (NULL);
222 if (!tmp)
223 return NULL;
224
225 pbuf = wnck_window_get_icon (window);
226 if (!gdk_pixbuf_save (pbuf, tmp, "png", NULL, NULL))
|
[Impact]
Coverity report bug.
[Test Case]
None, no regressions allowed.
[Regression Potential]
_
This bug is exported from the Coverity Integration Manager on Canonical's servers. For information on how this is done please see this website: https://wiki.ubuntu.com/CanonicalProductStrategy/Coverity
CID: 10450
Checker: SECURE_TEMP
Category: No category available
CWE definition: http://cwe.mitre.org/data/definitions/377.html
File: /tmp/buildd/bamf-0.4.0daily13.01.11/src/bamf-legacy-window.c
Function: bamf_legacy_window_save_mini_icon
Code snippet:
217
218 if (wnck_window_get_icon_is_fallback (window))
219 return NULL;
220
CID 10450 - SECURE_TEMP
{CovLStrv2{{t{{0} creates files with predictable names, which is unsafe.}{"tmpnam(char *)"}}}}
221 tmp = tmpnam (NULL);
222 if (!tmp)
223 return NULL;
224
225 pbuf = wnck_window_get_icon (window);
226 if (!gdk_pixbuf_save (pbuf, tmp, "png", NULL, NULL)) |
|
2013-05-08 11:42:37 |
Timo Jyrinki |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2013-05-15 05:57:40 |
Timo Jyrinki |
description |
[Impact]
Coverity report bug.
[Test Case]
None, no regressions allowed.
[Regression Potential]
_
This bug is exported from the Coverity Integration Manager on Canonical's servers. For information on how this is done please see this website: https://wiki.ubuntu.com/CanonicalProductStrategy/Coverity
CID: 10450
Checker: SECURE_TEMP
Category: No category available
CWE definition: http://cwe.mitre.org/data/definitions/377.html
File: /tmp/buildd/bamf-0.4.0daily13.01.11/src/bamf-legacy-window.c
Function: bamf_legacy_window_save_mini_icon
Code snippet:
217
218 if (wnck_window_get_icon_is_fallback (window))
219 return NULL;
220
CID 10450 - SECURE_TEMP
{CovLStrv2{{t{{0} creates files with predictable names, which is unsafe.}{"tmpnam(char *)"}}}}
221 tmp = tmpnam (NULL);
222 if (!tmp)
223 return NULL;
224
225 pbuf = wnck_window_get_icon (window);
226 if (!gdk_pixbuf_save (pbuf, tmp, "png", NULL, NULL)) |
[Impact]
Coverity report bug.
[Test Case]
None, no regressions allowed.
[Regression Potential]
No regression potential.
_
This bug is exported from the Coverity Integration Manager on Canonical's servers. For information on how this is done please see this website: https://wiki.ubuntu.com/CanonicalProductStrategy/Coverity
CID: 10450
Checker: SECURE_TEMP
Category: No category available
CWE definition: http://cwe.mitre.org/data/definitions/377.html
File: /tmp/buildd/bamf-0.4.0daily13.01.11/src/bamf-legacy-window.c
Function: bamf_legacy_window_save_mini_icon
Code snippet:
217
218 if (wnck_window_get_icon_is_fallback (window))
219 return NULL;
220
CID 10450 - SECURE_TEMP
{CovLStrv2{{t{{0} creates files with predictable names, which is unsafe.}{"tmpnam(char *)"}}}}
221 tmp = tmpnam (NULL);
222 if (!tmp)
223 return NULL;
224
225 pbuf = wnck_window_get_icon (window);
226 if (!gdk_pixbuf_save (pbuf, tmp, "png", NULL, NULL)) |
|
2013-05-17 14:20:21 |
Marco Trevisan (Treviño) |
bamf: status |
Fix Committed |
Fix Released |
|
2013-05-17 14:20:26 |
Marco Trevisan (Treviño) |
bug task deleted |
bamf/0.4 |
|
|
2013-05-17 14:20:35 |
Marco Trevisan (Treviño) |
bamf (Ubuntu): assignee |
|
Marco Trevisan (Treviño) (3v1n0) |
|
2013-05-17 14:21:05 |
Marco Trevisan (Treviño) |
bamf (Ubuntu Raring): status |
New |
Fix Released |
|
2013-06-25 05:06:22 |
Adam Conrad |
bug |
|
|
added subscriber SRU Verification |
2013-06-25 05:06:25 |
Adam Conrad |
tags |
coverity coverity-secure-temp |
coverity coverity-secure-temp verification-needed |
|
2013-07-08 14:37:49 |
Timo Jyrinki |
bamf (Ubuntu Raring): status |
Fix Released |
Fix Committed |
|
2013-07-25 13:45:10 |
Christopher Townsend |
tags |
coverity coverity-secure-temp verification-needed |
coverity coverity-secure-temp verification-done |
|
2013-08-12 13:12:42 |
Launchpad Janitor |
bamf (Ubuntu Raring): status |
Fix Committed |
Fix Released |
|
2013-08-12 13:13:08 |
Scott Kitterman |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|