Bug #70591 Coverity analysis results and patches
Submitted: 10 Oct 2013 15:24 Modified: 13 Nov 2013 23:43
Reporter: Honza Horak (OCA) Email Updates:
Status: Closed Impact on me:
Category:MySQL Server: Errors Severity:S3 (Non-critical)
Version:5.5.32 OS:Any
Assigned to: CPU Architecture:Any

[10 Oct 2013 15:24] Honza Horak
MySQL 5.5.32 was scanned using Coverity static analysis tool. I'll attach several files for more info.

How to repeat:
Just sanity fixes.
[10 Oct 2013 15:27] Honza Horak
patch for use after free issues

Attachment: mysql-covscan-use-after-free.patch (text/x-patch), 4.27 KiB.

[10 Oct 2013 15:28] Honza Horak
patch for copy paste issues

Attachment: mysql-covscan-copypaste.patch (text/x-patch), 690 bytes.

[10 Oct 2013 15:28] Honza Horak
patch for uninit issues

Attachment: mysql-covscan-uninit.patch (text/x-patch), 930 bytes.

[10 Oct 2013 15:29] Honza Horak
patch for varargs issues

Attachment: mysql-covscan-varargs.patch (text/x-patch), 2.73 KiB.

[10 Oct 2013 15:29] Honza Horak
patch for string overflow issues

Attachment: mysql-covscan-string-overflow.patch (text/x-patch), 1.93 KiB.

[10 Oct 2013 15:29] Honza Horak
patch for buffer overflow issues

Attachment: mysql-covscan-buffer-overflow.patch (text/x-patch), 867 bytes.

[10 Oct 2013 15:31] Honza Horak
Filtered Coverity error log

Attachment: upstream-report-2013-10-10.err (application/octet-stream, text), 140.09 KiB.

[10 Oct 2013 18:07] Sveta Smirnova
Thank you for the report.


use after free
string overflow

verified as described.

Case "buffer overflow" partially verified: code changed, but looks like the same issue exists.



resolved already.
[13 Nov 2013 23:43] Paul DuBois
Noted in 5.6.15, 5.7.3 changelogs.

Several issues identified by the Coverity static analysis tool were
fixed. Thanks to Jan Staněk and Honza Horak for the patches.