首頁 探索 說明
登入
OWEALs
/
fstools
镜像来自 https://git.openwrt.org/project/fstools.git
2
0
複刻 0
檔案 問題管理 0 Wiki
瀏覽代碼

mkdev: Avoid out of bounds read

readlink() truncates and does not null terminate the string when more
bytes would be written than available. Just increase the char array by
one and assume that there is a problem when all bytes are needed.

Coverity: #1330087, #1329991
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Hauke Mehrtens 4 年之前
父節點
9b3eb63d68
當前提交
4327ed40d9
共有 1 個文件被更改,包括 2 次插入2 次删除
分割檢視 顯示文件統計
  1. 2 2
      libblkid-tiny/mkdev.c

+ 2 - 2
libblkid-tiny/mkdev.c
查看文件 

@@ -31,7 +31,7 @@
 
 
 #include <syslog.h>
 
 
-static char buf[PATH_MAX];
 
+static char buf[PATH_MAX + 1];
 
 static char buf2[PATH_MAX];
 
 static unsigned int mode = 0600;
 
 
@@ -66,7 +66,7 @@ static void find_devs(bool block)
 
 
 		strcpy(path, dp->d_name);
 
 		len = readlink(buf2, buf, sizeof(buf));
 
-		if (len <= 0)
 
+		if (len <= 0 || len == sizeof(buf))
 
 			continue;
 
 
 		buf[len] = 0;