| 550897
|
|
unreachable code in nsCSSRendering::PaintDecorationLine
|
Core
|
CSS Parsing and Comp
|
nobody
|
UNCO
|
---
|
2022-10-10
|
| 550918
|
|
cairo_type1_font_subset_look_for_seac scares coverity
|
Core
|
Graphics
|
nobody
|
UNCO
|
---
|
2022-10-10
|
| 550965
|
|
CSSParserImpl::ParseBackgroundItem is the only caller to ignore GetToken()'s return value
|
Core
|
CSS Parsing and Comp
|
nobody
|
UNCO
|
---
|
2022-10-10
|
| 620175
|
|
nsView::~nsView seems to try to crash [@ nsView::InvalidateHierarchy]
|
Core
|
Web Painting
|
nobody
|
UNCO
|
---
|
2022-10-10
|
| 506264
|
|
pkix_Logger_Check ignores & leaks errors returned by called functions
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-11-18
|
| 587401
|
|
pkix_pl_LdapCertStore_GetCert and pkix_pl_LdapCertStore_GetCRL leak requestArena when PKIX_CHECK triggers goto cleanup
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-11-18
|
| 587403
|
|
pkix_pl_CRLEntry_Extensions_Hashcode leaks arena when PKIX_NULLCHECK_ONE(extension) returns
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-11-18
|
| 556299
|
|
secmod_doDescCopy miscomputes buffer size, leaks allocated string
|
NSS
|
Libraries
|
rrelyea
|
NEW
|
---
|
2022-10-10
|
| 335303
|
|
Null pointer dereference in pt_PostNotifyToCvar (pr/src/pthreads/ptsynch.c)
|
NSPR
|
NSPR
|
nobody
|
NEW
|
---
|
2024-01-01
|
| 337084
|
|
Coverity 466, dead code in mozilla/security/nss/lib/certhigh/certhigh.c
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 504402
|
|
pkix_pl_OcspResponse_Create will crash with nbioContext if httpClient->version != 1
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-11-28
|
| 505900
|
|
cert_pkixSetParam doesn't use revDate
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-12-26
|
| 556505
|
|
SECU_GetPasswordString, SECU_ChangePW2 and secu_InitSlotPassword are strange
|
NSS
|
Tools
|
nobody
|
NEW
|
---
|
2022-11-28
|
| 603735
|
|
for loop in vp8_decode is dead code while vp8_mem_req_segs only has one alg
|
Core
|
Audio/Video: Playbac
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 617713
|
|
provide symbol renaming for tremor/friends
|
Core
|
Audio/Video: Playbac
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 1216830
|
|
Possible OOB read in |nsCSPContext::GetAllowsInline| when logging is enabled
|
Core
|
DOM: Security
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1220543
|
|
Don't hard code MAX_ECKEY_LEN
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1230156
|
|
[meta] Coverity Static Analysis fixes
|
Developer Infrastruc
|
Source Code Analysis
|
nobody
|
NEW
|
---
|
2023-03-02
|
| 1234527
|
|
Unused values in nss
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1251258
|
|
Out-of-bounds access (ARRAY_VS_SINGLETON) in chacha20_vec.c
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1361651
|
|
Coverity report: nsRubyBaseContainerFrame::nsRubyBaseContainerFrame(nsStyleContext *): A scalar field is not initialized by the constructor
|
Core
|
Layout
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 1598609
|
|
Memory leak in RequestResolver::GetStorageEstimate after calling QueryInterface
|
Core
|
Storage: Quota Manag
|
nobody
|
NEW
|
---
|
2024-06-21
|
| 1791005
|
|
Two coverity issues in gfxTextRun.cpp
|
Core
|
Graphics: Text
|
nobody
|
NEW
|
---
|
2022-09-15
|
| 1856309
|
|
copy-instead-of-move coverity warnings in RemoteTextureMap.cpp
|
Core
|
Graphics
|
nobody
|
NEW
|
---
|
2023-10-02
|
| 339921
|
|
Coverity 410, NULL ptr crash in certdb_SaveSingleProfile
|
NSS
|
Libraries
|
rrelyea
|
NEW
|
---
|
2024-06-05
|
| 506261
|
|
callers of PK11_MakeString may leak allocated result.
|
NSS
|
Libraries
|
rrelyea
|
NEW
|
---
|
2022-10-10
|
| 1027173
|
|
Leak in nssPKIX509_GetIssuerAndSerialFromDER and nss3certificate_getDERSerialNumber if |serial| or |issuer| are NULL
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2023-11-06
|
| 1315643
|
|
[Coverity] Uninitialized read in media/webrtc/trunk/webrtc/modules/audio_processing/aecm/aecm_core.c
|
Core
|
WebRTC: Audio/Video
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1361597
|
|
Coverity report: nsTableColGroupFrame::nsTableColGroupFrame(nsStyleContext *): A scalar field is not initialized by the constructor
|
Core
|
Layout: Tables
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 1361599
|
|
Coverity report: nsTableRowGroupFrame::nsTableRowGroupFrame(nsStyleContext *): A scalar field is not initialized by the constructor
|
Core
|
Layout: Tables
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 505829
|
|
Please deprecate NSS_CMSSignerInfo_AddCounterSignature
|
NSS
|
Documentation
|
nobody
|
NEW
|
---
|
2023-12-11
|
| 552940
|
|
XRemoteClient::FindBestWindow doesn't check status from XGetWindowProperty
|
Core
|
Widget: Gtk
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 552946
|
|
cmmf_create_witness_and_challenge didn't handle OOM from SEC_ASN1EncodeInteger
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2023-11-06
|
| 557903
|
|
CERT_CreateValidity, CERT_CreateName, CERT_DecodeOidSequence leak arena when PORT_Arena[Z]Alloc fails
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2023-11-06
|
| 587423
|
|
nssTrust_Create could mark and release object->arena to reduce time rvt is allocated on failure
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2023-11-06
|
| 587430
|
|
nssCRL_Create could mark arena before allocating rvCRL and revert to the mark on failure
|
NSS
|
Libraries
|
nobody
|
NEW
|
---
|
2023-11-06
|
| 598468
|
|
Remove ugly code preventing assert in DoCompareTreePosition when called from nsHTMLFormElement.cpp
|
Core
|
DOM: Forms
|
nobody
|
NEW
|
---
|
2023-04-20
|
| 618796
|
|
SECU_displayVerifyLog clobbers errstr with node->cert->issuerName
|
NSS
|
Tools
|
nobody
|
NEW
|
---
|
2023-11-06
|
| 1024193
|
|
Maybe |node| is uninitialized in some cases in nsContentSubtreeIterator::Init
|
Core
|
DOM: Core & HTML
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1026676
|
|
Possible use of uninitialized variable |position| in nsCSSRendering::PaintGradient
|
Core
|
CSS Parsing and Comp
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 1361576
|
|
coverity report: In nsXULPopupManager::ShowMenu(nsIContent *, bool, bool): Pointer is checked against null but then dereferenced anyway
|
Core
|
XUL
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 507378
|
|
useless null check of handle in sftk_fips_ECDSA_Test
|
NSS
|
Libraries
|
rrelyea
|
NEW
|
---
|
2022-10-10
|
| 587425
|
|
fill_CERTCertificateFields doesn't consistently order its checks of instance/context and nssCryptokiObject_Clone can leave ->label null
|
NSS
|
Libraries
|
rrelyea
|
NEW
|
---
|
2023-11-06
|
| 1279538
|
|
(coverity) resouce leak : mailnews/mime/src/mimedrft.cpp: |body| and |newAttachDAta| are not released.
|
MailNews Core
|
MIME
|
ishikawa
|
NEW
|
---
|
2022-10-11
|
| 336043
|
|
suppress false Coverity hit in dtoa(), Coverity 245
|
NSPR
|
NSPR
|
nobody
|
NEW
|
---
|
2022-10-24
|
| 339994
|
|
Coverity 498, PR_EmulateSendFile may pass NULL to func that dereferences it
|
NSPR
|
NSPR
|
nobody
|
NEW
|
---
|
2023-02-27
|
| 504488
|
|
nsXULElement::AfterSetAttr doesn't always guard its use of aValue
|
Core
|
XUL
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 550915
|
|
unreachable code in cairo_scaled_font_glyph_extents
|
Core
|
Graphics
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 550922
|
|
_cairo_stroker_curve_to uses start, end uninitialized if !_compute_normalized_device_slope(...)
|
Core
|
Graphics
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 550943
|
|
FontEntry::CairoFontFace doesn't handle failure from FT_New_Face
|
Core
|
Graphics
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 558301
|
|
nsOSHelperAppService::OSProtocolHandlerExists does extra work if MOZ_PLATFORM_MAEMO == 5
|
Firefox
|
File Handling
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 560133
|
|
dosprintf leaks nas on failure
|
NSPR
|
NSPR
|
nobody
|
NEW
|
---
|
2022-12-26
|
| 586948
|
|
_PR_InitLinker could preallocate lm [PRLibrary]
|
NSPR
|
NSPR
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 587632
|
|
nsXULPopupManager::ShowPopupCallback leaks item when ENSURE_TRUE(weakFrame.IsAlive()) fails
|
Core
|
XUL
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 587634
|
|
NS_ENSURE_SUCCESS in moz_qicon_to_channel leaks buf on failure
|
Core
|
Graphics
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 617662
|
|
please use more // fall through comments in nsHtml5TreeBuilder::endTag
|
Core
|
DOM: HTML Parser
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 617921
|
|
Snarf should pass a positive value to fread
|
Core
|
JavaScript Engine
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 620170
|
|
ParsePrivateDictData handles enum type in a way which doesn't guard local_subrs_index
|
Core
|
Graphics
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 620174
|
|
nsOverflowContinuationTracker::Finish doesn't maintain consistent preconditions for mOverflowContList
|
Core
|
Layout
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 620241
|
|
Decompile leaks argv in JSOP_NEW.. when LOCAL_ASSERT fails
|
Core
|
JavaScript Engine
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 620279
|
|
Assume infallible NS_NewListControlFrame in nsCSSFrameConstructor::ConstructSelectFrame
|
Core
|
Layout
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 620950
|
|
nsImageMap::AddArea could set area to 0 in default NS_NOTREACHED case
|
Core
|
Layout: Images, Vide
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 1020011
|
|
Segment::justify leaks |stats|
|
Core
|
Graphics: Text
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1020576
|
|
DumpHeap in TestingFunctions.cpp fails to close |dumpFile| when it gets bad args
|
Core
|
JavaScript Engine
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1037108
|
|
Potential buffer overflow in UTF8ToUTF16Char
|
Toolkit
|
Crash Reporting
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1142672
|
|
[logalloc] Leak of |fd| in |replace_init|
|
Core
|
Memory Allocator
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1142776
|
|
webrtc::FileAudioDevice leaks CriticalSection
|
Core
|
WebRTC: Audio/Video
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1142831
|
|
Many potential leaks if |NS_DispatchToMain| fails
|
Core
|
XPCOM
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1187461
|
|
Possible use of uninitialized values in nsHTMLReflowState::InitAbsoluteConstraints
|
Core
|
Layout
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1237291
|
|
[Static Analysis][Dereference after null check] In function Parser<FullParseHandler>::checkFunctionDefinition from Parser.cpp
|
Core
|
JavaScript Engine
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1258379
|
|
[Static Analysis][Dereference before null check] In function Parser<ParseHandler>::bindVar
|
Core
|
JavaScript Engine
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1278491
|
|
(coverity) resource leak: /mailnews/extensions/mdn/src/nsMsgMdnGenerator.cpp: convbuf is not released in early error exit.
|
MailNews Core
|
Backend
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1278494
|
|
(coverity) uninitialized variable, etc.: /mailnews/base/util/nsMsgDBFolder.cpp oldBiffState
|
MailNews Core
|
Backend
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1279542
|
|
(coverity) resource leak: mailnews/mime/src/mimei.cpp: |hdrs| is not released on early error return.
|
MailNews Core
|
MIME
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1279931
|
|
(coverity) resource leak: mailnews/mime/src/mimemoz2.cpp: |urlSpec| is not released on an early return.
|
MailNews Core
|
MIME
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1279934
|
|
(coverity) resource leak: mailnews/mime/src/nsCMSSecureMessage.cpp: |data| is not freed on early return
|
MailNews Core
|
MIME
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280066
|
|
(coverity) resource leak: mailnews/mime/src/mimecms.cpp: a memory area returned by | mime_part_address(walker)| is not freed.
|
MailNews Core
|
MIME
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280273
|
|
(coverity) resource leak: mailnews/mime/src/mimemoz2.cpp: area pointed by |dstPtr| is lost in an error path
|
MailNews Core
|
MIME
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280277
|
|
(coverity) resource leak: mailnews/mime/emitters/nsMimeBaseEmitter.cpp: area pointed by |ptr| is lost in a execution path.
|
MailNews Core
|
MIME
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280492
|
|
(coverity) Uninitialized scalar variable: mailnews/local/src/nsLocalMailFolder.cpp: |rv| is not in a path before being returned by |return rv|.
|
MailNews Core
|
Database
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280495
|
|
(coverity) uninitialized scalar variable: mailnews/imap/src/nsImapMailFolder.cpp: |rv| is not set properly (either uninitialized and some error values are lost).
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280664
|
|
(coverity) uninitialized scalar variable: mailnews/imap/src/nsImapProtocol.cpp: |rv| is not set always.
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280750
|
|
(coverity) uninitialized scalar variable: mailnews/imap/src/nsAutoSyncState.cpp: |rv| is not set always before returned as function value.
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1280752
|
|
(coverity) uninitialized scalar variable: mailnews/imap/src/nsImapMailFolder.cpp: |rv| is not set value always before being returned as function return value.
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1281352
|
|
(coverity) uninitialized scalar value: /mailnews/imap/src/nsImapMailFolder.cpp: |rv| is not set a value before being returned in |return rv|
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1281353
|
|
(coverity) uninitialized scalar value: mailnews/imap/src/nsImapMailFolder.cpp: there are execution paths where |rv| is not set before returned by |return rv|
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1282085
|
|
(coverity) uninitialized scalar variable: mailnews/imap/src/nsImapMailFolder.cpp: |rv| is not set in an execution path before being returned by |return rv|
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1285101
|
|
(coverity) uninitialized scalar variable: mailnews/imap/src/nsImapOfflineSync.cpp: |flagOperation| may not be initialized on the first use.
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1285262
|
|
(coverity) resource leak: mailnews/imap/src/nsImapServerResponseParser.cpp: |mimeHeaderData| going out of scope leaks the storage it points to.
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2024-07-01
|
| 1285432
|
|
(coverity) resource leak: mailnews/imap/src/nsIMAPNamespace.cpp: |convertedFolderName| is not released in an early error path.
|
MailNews Core
|
Networking: IMAP
|
nobody
|
NEW
|
---
|
2022-10-11
|
| 1224139
|
|
PK11 unchecked error values
|
NSS
|
Libraries
|
nobody
|
REOP
|
---
|
2022-10-11
|
| 505719
|
|
moz_gdk_pixbuf_to_channel leaks buf if it can't construct stream or get it to adopt buf
|
Core
|
Graphics: ImageLib
|
nobody
|
REOP
|
---
|
2022-10-10
|