Changes between Initial Version and Version 1 of Ticket #16834
- Timestamp:
- Jun 21, 2017 12:14:33 PM (7 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #16834 – Description
initial v1 1 1 Function VGDrvCommonIoCtl in src/VBox/Additions/common/VBoxGuest/VBoxGuest.cpp is checking to see if pcbDataReturned is NULL and then setting it to zero, thus the code assumes there is a potential for the pointer to be NULL. However, later in the function we have: 2 2 {{{ 3 3 case VBOXGUEST_IOCTL_GUEST_CAPS_ACQUIRE: 4 4 CHECKRET_SIZE("GUEST_CAPS_ACQUIRE", sizeof(VBoxGuestCapsAquire)); … … 6 6 *pcbDataReturned = sizeof(VBoxGuestCapsAquire); 7 7 break; 8 8 }}} 9 9 and this dereferencing the pointer that could potentially be zero. 10 10
