In file nss/lib/certhigh/certhtml.c, in function CERT_FormatName, there are 8 calls to CERT_DecodeAVAValue, each of which returns a pointer. Immediately following each call, that pointer is derefenced without first being checked for NULL. The function can and does occasionally return NULL. Klockwork IDs 76494, 76496, 76498, 46500, 76502, 76504, 76506, 76508.
Created attachment 240386 [details] [diff] [review] check a pointer for NULL before deref it.
Comment on attachment 240386 [details] [diff] [review] check a pointer for NULL before deref it. r=nelson for trunk
/cvsroot/mozilla/security/nss/lib/certdb/secname.c,v <-- secname.c new revision: 1.20; previous revision: 1.19 /cvsroot/mozilla/security/nss/lib/certhigh/certhtml.c,v <-- certhtml.c new revision: 1.7; previous revision: 1.6