You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Category: Memory - corruptions
Function: read_group_cb
Component: Bluetooth
CID: 218735
Details:
1459 {
1460 struct read_group_data *data = user_data;
1461 struct bt_att_chan *chan = data->chan;
1462 int read;
1463
1464 /* Update group end_handle if attribute is not a service */
>>> CID 218735: (OVERRUN)
>>> Overrunning array "struct bt_uuid_16 [1]({{.uuid = {BT_UUID_TYPE_16}, .val = 10240}})" of 4 bytes by passing it to a function which accesses it at byte offset 16.
1465 if (bt_uuid_cmp(attr->uuid, BT_UUID_GATT_PRIMARY) &&
1466 bt_uuid_cmp(attr->uuid, BT_UUID_GATT_SECONDARY)) {
1467 if (data->group &&
1468 handle > sys_le16_to_cpu(data->group->end_handle)) {
1469 data->group->end_handle = sys_cpu_to_le16(handle);
1470 }
1459 {
1460 struct read_group_data *data = user_data;
1461 struct bt_att_chan *chan = data->chan;
1462 int read;
1463
1464 /* Update group end_handle if attribute is not a service */
>>> CID 218735: (OVERRUN)
>>> Overrunning array "struct bt_uuid_16 [1]({{.uuid = {BT_UUID_TYPE_16}, .val = 10241}})" of 4 bytes by passing it to a function which accesses it at byte offset 16.
1465 if (bt_uuid_cmp(attr->uuid, BT_UUID_GATT_PRIMARY) &&
1466 bt_uuid_cmp(attr->uuid, BT_UUID_GATT_SECONDARY)) {
1467 if (data->group &&
1468 handle > sys_le16_to_cpu(data->group->end_handle)) {
1469 data->group->end_handle = sys_cpu_to_le16(handle);
1470 }
Please fix or provide comments in coverity using the link:
Note: This issue was created automatically. Priority was set based on classification
of the file affected and the impact field in coverity. Assignees were set using the CODEOWNERS file.
The text was updated successfully, but these errors were encountered:
Static code scan issues found in file:
https:/zephyrproject-rtos/zephyr/tree/fe7c2efca800a0cf1bccf23aefe08b3c4beb88bf/subsys/bluetooth/host/att.c#L1465
Category: Memory - corruptions
Function:
read_group_cb
Component: Bluetooth
CID: 218735
Details:
Please fix or provide comments in coverity using the link:
https://scan9.coverity.com/reports.htm#v32951/p12996.
Note: This issue was created automatically. Priority was set based on classification
of the file affected and the impact field in coverity. Assignees were set using the CODEOWNERS file.
The text was updated successfully, but these errors were encountered: