奇安信CodeSafe issues

Results 348 issues of


                                            奇安信CodeSafe

Div zero?

Hi all, This is Qianxin CodeSafe Team, we found a suspicious div-zero, at https://github.com/cisco/openh264/blob/3668daf135dea7d18737b01ce32774a7a2ffba32/codec/processing/src/adaptivequantization/AdaptiveQuantization.cpp#L192 in the maco used at https://github.com/cisco/openh264/blob/3668daf135dea7d18737b01ce32774a7a2ffba32/codec/processing/src/adaptivequantization/AdaptiveQuantization.cpp#L145 and https://github.com/cisco/openh264/blob/3668daf135dea7d18737b01ce32774a7a2ffba32/codec/processing/src/adaptivequantization/AdaptiveQuantization.cpp#L146 which is defined at https://github.com/cisco/openh264/blob/3668daf135dea7d18737b01ce32774a7a2ffba32/codec/common/inc/macros.h#L132 the second argument...

Memory Leak?

Hi all, This is Qianxin CodeSafe Team, we found a suspicious issue, at https://github.com/facebook/hhvm/blob/a3a83d96bb0cad09138a746c65ba0d5d84f77bf7/hphp/runtime/base/preg.cpp#L659 subpat_names is the memory allocated by calloc,at https://github.com/facebook/hhvm/blob/a3a83d96bb0cad09138a746c65ba0d5d84f77bf7/hphp/runtime/base/preg.cpp#L655 but we don't see the code to free...

Memory leak?

Hi all, This is Qianxin CodeSafe Team, we found a suspicious issue, at https://github.com/facebook/hhvm/blob/6999172b83a52057636859b59031fcbcab74b020/hphp/neo/neo_hdf.c#L480 Assume that the condition value is false,at https://github.com/facebook/hhvm/blob/6999172b83a52057636859b59031fcbcab74b020/hphp/neo/neo_hdf.c#L97 Let's say that name is equal to the...

Remove JSONP callback support (was Cross-Site Scripting: Reflected)

per https://github.com/OpenRefine/OpenRefine/issues/4082#issuecomment-1020944785 - Remove use of JSONP callbacks and use pure JSON instead. This will require changes on both the front and back ends. This is a generalization of the...

vulnerability

Memory leak?

Hi all, This is Qianxin CodeSafe Team, we found a suspicious issue, at https://github.com/apache/brpc/blob/5cdf22f158722b3b11c7eabb7632690d719ccc4b/src/bthread/task_group.cpp#L230 which is allocating memory at https://github.com/apache/brpc/blob/5cdf22f158722b3b11c7eabb7632690d719ccc4b/src/bthread/task_group.cpp#L81 however,the author did not use any functions to free up...

Memory leak?

Hi all, This is Qianxin CodeSafe Team, we found a suspicious issue, at https://github.com/apache/brpc/blob/5cdf22f158722b3b11c7eabb7632690d719ccc4b/tools/parallel_http/parallel_http.cpp#L210 which is allocating memory at https://github.com/apache/brpc/blob/5cdf22f158722b3b11c7eabb7632690d719ccc4b/tools/parallel_http/parallel_http.cpp#L138 If none of the previous loops are truel,this will result...

bug

The memory is used after released ??

Hi all, This is Qianxin CodeSafe Team, we found a suspicious issue, at https://github.com/google/leveldb/blob/23e35d792b9154f922b8b575b12596a4d8664c65/util/cache.cc#L316 Element "e" is used at https://github.com/google/leveldb/blob/23e35d792b9154f922b8b575b12596a4d8664c65/util/cache.cc#L314 however，function “Unref” is defined at https://github.com/google/leveldb/blob/23e35d792b9154f922b8b575b12596a4d8664c65/util/cache.cc#L226 where has freed e's...

Memory Leak?

Hi all, This is Qianxin CodeSafe Team, we found a memory leak, at https://github.com/google/leveldb/blob/23e35d792b9154f922b8b575b12596a4d8664c65/db/version_set.cc#L1240 https://github.com/google/leveldb/blob/23e35d792b9154f922b8b575b12596a4d8664c65/db/version_set.cc#L1241 Although the array is deleted at https://github.com/google/leveldb/blob/23e35d792b9154f922b8b575b12596a4d8664c65/db/version_set.cc#L1248 , the elements in the array are not...