Coverity INTEGER_OVERFLOW - CID 10716

Bug #944234 reported by Product Strategy Coverity Bug Uploader on 2012-03-01
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Application Indicators
Fix Released
Medium
Charles Kerr
0.4
Fix Released
Undecided
Ted Gould

Bug Description

This bug is exported from the Coverity Integration Manager on Canonical's servers. For information on how this is done please see this website: https://wiki.ubuntu.com/CanonicalProductStrategy/Coverity
CID: 10716
Checker: INTEGER_OVERFLOW
Category: return_value_error
CWE definition: http://cwe.mitre.org/data/definitions/190.html
File: /tmp/buildd/indicator-application-0.4.91/src/generate-id.c
Function: generate_id()
Code snippet:
 64 }
 65 }
 66 }
 67
CID 10716 - INTEGER_OVERFLOW
Multiply operation overflows on operands "(category * 256 + first) * 256 + second" and "256".
Overflowed or truncated value (or a value computed from an overflowed or truncated value) "((category * 256 + first) * 256 + second) * 256 + third" used as return value.
 68 return (((((category * 256) + first) * 256) + second) * 256) + third;
 69 }

Related branches

Ted Gould (ted) on 2012-03-02
Changed in indicator-application:
status: New → In Progress
assignee: nobody → Ted Gould (ted)
milestone: none → 0.4.91
Charles Kerr (charlesk) wrote :

Since the fix is clear (cough, famous last words) and ted is out of town until after the next scheduled release, I'm stealing this ticket from him for sweet, sweet karma.

Changed in indicator-application:
assignee: Ted Gould (ted) → charles (charlesk)
status: In Progress → Fix Committed
milestone: 0.4.91 → 0.4.93
Ted Gould (ted) on 2012-03-21
Changed in indicator-application:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers