Skip to content

Fix/xinetd probe memory safety#2371

Open
edznux-dd wants to merge 1 commit into
OpenSCAP:mainfrom
edznux-dd:fix/xinetd-probe-memory-safety
Open

Fix/xinetd probe memory safety#2371
edznux-dd wants to merge 1 commit into
OpenSCAP:mainfrom
edznux-dd:fix/xinetd-probe-memory-safety

xinetd probe: fix memory-safety bugs on malformed config

23da35c
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Jun 19, 2026 in 2s

2 new alerts including 2 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 2 high

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 682 in src/OVAL/probes/unix/xinetd_probe.c

See this annotation in the file changed.

Code scanning / CodeQL

Uncontrolled data used in path expression High

This argument to a file access function is derived from
user input (buffer read by read)
Loading
and then passed to xiconf_add_cfile(path), which calls xiconf_read(path), which calls open(__path).

Check failure on line 757 in src/OVAL/probes/unix/xinetd_probe.c

See this annotation in the file changed.

Code scanning / CodeQL

Uncontrolled data used in path expression High

This argument to a file access function is derived from
user input (buffer read by read)
Loading
and then passed to xiconf_add_cfile(path), which calls xiconf_read(path), which calls open(__path).