{"id":444,"date":"2008-10-10T15:58:01","date_gmt":"2008-10-10T13:58:01","guid":{"rendered":"http:\/\/daniel.haxx.se\/blog\/?p=444"},"modified":"2008-10-10T20:24:31","modified_gmt":"2008-10-10T18:24:31","slug":"another-curl-scan-shows-work-to-do","status":"publish","type":"post","link":"https:\/\/daniel.haxx.se\/blog\/2008\/10\/10\/another-curl-scan-shows-work-to-do\/","title":{"rendered":"Another curl scan shows work to do"},"content":{"rendered":"

The nice guys on Coverity<\/a> did a new scan on curl (the 7.19.0 source code) and they dug a bunch of new flaws. The previous version they checked was 7.16.1, release some 20 months before. The new changes are not only because of how the code has changed in the mean time, but it seems their scanner have improved a bit since the last time as well!<\/p>\n

Here’s a sample view of how libcurl might dereference a NULL pointer with a step-by-step explanation on what conditions that lead to the flaw:<\/p>\n

\"\"<\/p>\n

They identify 22 flaws and I found it interesting to compare the top list of bad functions as reported by Coverity with the complexity list<\/a> I showed the other day. First we need to ignore the 9 flaws Coverity found in the ‘curl’ tool code (i.e not within the library). Then the 10 remaining functions with flaws marked by Coverity are:<\/p>\n