I've currently not environment and time to fix this issue, but I'd like to have it on the SHR-devel list for reference.
BR, Lukas ---------- Forwarded message ---------- From: Michael Tautschnig <[email protected]> Date: 2014-05-15 12:15 GMT+02:00 Subject: [pkg-fso-maint] Bug#748209: Function declaration without parameter type list shadows stack underflow To: [email protected] Package: libphone-ui Version: 1:0.0.1+git20110825-3 Usertags: goto-cc During an analysis of all packages using our research compiler tool-chain (using tools from the cbmc package) the following error was found: The declaration of _fso_pim_dates in dbus.h http://sources.debian.net/src/libphone-ui/1:0.0.1+git20110825-3/src/dbus.h?hl=35#L35 shadows the fact that _fso_pim_dates actually requires an argument: http://sources.debian.net/src/libphone-ui/1:0.0.1+git20110825-3/src/dbus.c?hl=70#L70 Consequently the call here: http://sources.debian.net/src/libphone-ui/1:0.0.1+git20110825-3/src/phoneui-utils.c?hl=399#L399 will cause a stack underflow and thus results in undefined behaviour (here this might cause reading of an arbitrary g-object-path, which may result in memory errors or even inappropriately accessing data). Best, Michael _______________________________________________ Shr-devel mailing list [email protected] http://lists.shr-project.org/mailman/listinfo/shr-devel
