Solve fuzz XMLParser Null-dereference (#5668)

* Refs 22843+22844: Regression test

Signed-off-by: Juanjo Garcia <[email protected]>

* Refs 22843+22844: Fix

Signed-off-by: Juanjo Garcia <[email protected]>

---------

Signed-off-by: Juanjo Garcia <[email protected]>

Author: juanjo4936

src/cpp/xmlparser/XMLDynamicParser.cpp

@@ -1422,7 +1422,17 @@ DynamicType::_ref_type XMLParser:: parseXMLMemberDynamicType(
 
         if (!isArray)
         {
-            member = factory->create_map_type(key_type, value_type, length)->build();
+            auto temp_map = factory->create_map_type(key_type, value_type, length);
+            if (temp_map)
+            {
+                member = temp_map->build();
+            }
+            else
+            {
+                EPROSIMA_LOG_ERROR(XMLPARSER,
+                        "Error parsing map member with name = " << memberName);
+                return {};
+            }
         }
         else
         {

test/unittest/xmlparser/XMLParserTests.cpp

@@ -87,6 +87,8 @@ TEST_F(XMLParserTests, regressions)
     EXPECT_EQ(XMLP_ret::XML_ERROR, XMLParser::loadXML("regressions/22054_profile_bin.xml", root));
     EXPECT_EQ(XMLP_ret::XML_ERROR, XMLParser::loadXML("regressions/22101_profile_bin.xml", root));
     EXPECT_EQ(XMLP_ret::XML_ERROR, XMLParser::loadXML("regressions/22535_profile_bin.xml", root));
+    EXPECT_EQ(XMLP_ret::XML_ERROR, XMLParser::loadXML("regressions/22843_profile_bin.xml", root));
+    EXPECT_EQ(XMLP_ret::XML_ERROR, XMLParser::loadXML("regressions/22844_profile_bin.xml", root));
     Log::Flush();
 }