New Defects reported by Coverity Scan for LibreOffice

scan-admin Tue, 19 Jun 2018 08:25:02 -0700

Hi,

Please find the latest report on new defect(s) introduced to LibreOffice found 
with Coverity Scan.


4 new defect(s) introduced to LibreOffice found with Coverity Scan.
1 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent 
build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 4 of 4 defect(s)


** CID 1437410:  Null pointer dereferences  (FORWARD_NULL)


________________________________________________________________________________________________________
*** CID 1437410:  Null pointer dereferences  (FORWARD_NULL)
/sw/source/core/docnode/ndtbl1.cxx: 93 in 
SwTableFormatCmp::~SwTableFormatCmp()()
87     }
88     
89     SwTableFormatCmp::~SwTableFormatCmp()
90     {
91         if (pOld)
92             pOld->Remove(this);
>>>     CID 1437410:  Null pointer dereferences  (FORWARD_NULL)
>>>     Passing null pointer "this->pOld" to "HasWriterListeners", which 
>>> dereferences it.
93         if (!pOld->HasWriterListeners())
94             delete pOld;
95     }
96     
97     // static
98     SwFrameFormat* 
SwTableFormatCmp::FindNewFormat(std::vector<std::unique_ptr<SwTableFormatCmp>>& 
rArr,

** CID 1437409:  Null pointer dereferences  (FORWARD_NULL)


________________________________________________________________________________________________________
*** CID 1437409:  Null pointer dereferences  (FORWARD_NULL)
/sw/qa/extras/ww8export/ww8export2.cxx: 311 in testTdf70838::verify()()
305         CPPUNIT_ASSERT(xText->getSize().Width  > 11000);
306     }
307     
308     DECLARE_WW8EXPORT_TEST(testTdf70838, "tdf70838.odt")
309     {
310         SwXTextDocument* pTextDoc = dynamic_cast<SwXTextDocument 
*>(mxComponent.get());
>>>     CID 1437409:  Null pointer dereferences  (FORWARD_NULL)
>>>     Passing null pointer "pTextDoc" to "GetDocShell", which dereferences it.
311         SwDoc* pDoc = pTextDoc->GetDocShell()->GetDoc();
312         SdrPage* pPage = 
pDoc->getIDocumentDrawModelAccess().GetDrawModel()->GetPage(0);
313         tools::Rectangle aRect = pPage->GetObj(0)->GetSnapRect();
314         CPPUNIT_ASSERT( aRect.GetHeight() > aRect.GetWidth() );
315     }
316     

** CID 1437408:  Uninitialized members  (UNINIT_CTOR)
/svx/source/dialog/paraprev.cxx: 221 in ParaPrevWindow::ParaPrevWindow()()


________________________________________________________________________________________________________
*** CID 1437408:  Uninitialized members  (UNINIT_CTOR)
/svx/source/dialog/paraprev.cxx: 221 in ParaPrevWindow::ParaPrevWindow()()
215         nLeftMargin     ( 0 ),
216         nRightMargin    ( 0 ),
217         eAdjust         ( SvxAdjust::Left ),
218         eLastLine       ( SvxAdjust::Left )
219     {
220         aSize = Size(11905, 16837);
>>>     CID 1437408:  Uninitialized members  (UNINIT_CTOR)
>>>     Non-static class member "eLine" is not initialized in this constructor 
>>> nor in any functions that it calls.
221     }
222     
223     void ParaPrevWindow::SetDrawingArea(weld::DrawingArea* pDrawingArea)
224     {
225         Size 
aOptimalSize(getParagraphPreviewOptimalSize(pDrawingArea->get_ref_device()));
226         pDrawingArea->set_size_request(aOptimalSize.Width(), 
aOptimalSize.Height());

** CID 1437407:  FindBugs: Malicious code vulnerability  
(FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)
/scripting/java/com/sun/star/script/framework/provider/ClassLoaderFactory.java: 
48 in 
com.sun.star.script.framework.provider.ClassLoaderFactory.getURLClassLoader(java.lang.ClassLoader,
 java.net.URL[])()


________________________________________________________________________________________________________
*** CID 1437407:  FindBugs: Malicious code vulnerability  
(FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)
/scripting/java/com/sun/star/script/framework/provider/ClassLoaderFactory.java: 
48 in 
com.sun.star.script.framework.provider.ClassLoaderFactory.getURLClassLoader(java.lang.ClassLoader,
 java.net.URL[])()
42     
43             return getURLClassLoader(parent, classPath);
44         }
45     
46         public static ClassLoader getURLClassLoader(ClassLoader parent,
47                 URL[] classpath) {
>>>     CID 1437407:  FindBugs: Malicious code vulnerability  
>>> (FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)
>>>     
>>> com.sun.star.script.framework.provider.ClassLoaderFactory.getURLClassLoader(ClassLoader,
>>>  URL[]) creates a java.net.URLClassLoader classloader, which should be 
>>> performed within a doPrivileged block.
48             return new URLClassLoader(classpath, parent);
49         }


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, 
https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRZBnDJeNb0HijxaS4JNJPxk3kpyAm2AYqo71yXmnOxB72ibeUH-2F-2F1Lhi9AZq3dRu-2F4-3D_g-2BrHdvqzaBa155F-2F8AmPhpJzY63UzWDisJV95WUBpGhqFw1ICExHG8aMaV2EoFpyNgRalQv3-2FPxLwxoPwdptXUkrgux6lWK0ySo6MMNEMfyGqRgmlJgXMUazIz9n8K0ijKKqkJnThuSiipn71UXVFr-2FeReUAvK0DQGzsIq724PAjaKbImO-2FouklEnRLcrG2ntgnD-2BYU9x-2BfjN66PkUQTWBBWVQ3ditBQK8HLoGDJ78o-3D

_______________________________________________
LibreOffice mailing list
LibreOffice@lists.freedesktop.org
https://lists.freedesktop.org/mailman/listinfo/libreoffice

New Defects reported by Coverity Scan for LibreOffice

Reply via email to