Closed
Bug 1232624
Opened 9 years ago
Closed 8 years ago
NSS possible TOCTOU bugs
Categories
(NSS :: Libraries, defect)
NSS
Libraries
Tracking
(firefox46 affected)
RESOLVED
INVALID
| Tracking | Status | |
|---|---|---|
| firefox46 | --- | affected |
People
(Reporter: franziskus, Unassigned)
References
(Blocks 1 open bug)
Details
(Keywords: coverity, meta, sec-other)
There are a couple of TOCTOU bugs coverity found (CID 1213980, 749674, 222504, 222503). We should fix them in one way or the other.
|
||
Comment 1•9 years ago
|
||
The people potentially fixing those bugs (unless it's you, I guess) won't have access to Coverity. Could you please file these as bugs (one or more depending on who similar they are)? Also please * put the CID numbers in the whiteboard of the related bug(s) * put the bug number or link as a comment in the coverity item's history so the next person doesn't come along and file the same bug.
Flags: needinfo?(franziskuskiefer)
|
Reporter | |
Comment 2•9 years ago
|
||
This is a meta bug. I filed four separate bugs with code snippets. They're all linked in coverity (Ext. Reference).
Flags: needinfo?(franziskuskiefer)
|
||
Updated•8 years ago
|
|
|
Reporter | |
Comment 3•8 years ago
|
||
none of those possible TOCTOUs are dangerous, so marking this as invalid.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → INVALID
|
|
||
Updated•8 years ago
|
Group: crypto-core-security
You need to log in
before you can comment on or make changes to this bug.
Description
•