Linux Stable - Linux kernel stable tree

diff options

author	Colin Ian King <colin.king@canonical.com>	2021-08-04 16:09:51 +0100
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2021-09-22 11:47:53 +0200
commit	518d8c3c34fa443821440fa6cdd8a62e58f70693 (patch)
tree	64ffb71aaa8c882de813d0555b4706842ede2ad5 /CREDITS
parent	23beb85d910f96ee5c7c8011fa8fb27a78ab80b7 (diff)
download	linux-stable-518d8c3c34fa443821440fa6cdd8a62e58f70693.tar.gz linux-stable-518d8c3c34fa443821440fa6cdd8a62e58f70693.tar.bz2 linux-stable-518d8c3c34fa443821440fa6cdd8a62e58f70693.zip

Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow

[ Upstream commit 713baf3dae8f45dc8ada4ed2f5fdcbf94a5c274d ] An earlier commit replaced using batostr to using %pMR sprintf for the construction of session->name. Static analysis detected that this new method can use a total of 21 characters (including the trailing '\0') so we need to increase the BTNAMSIZ from 18 to 21 to fix potential buffer overflows. Addresses-Coverity: ("Out-of-bounds write") Fixes: fcb73338ed53 ("Bluetooth: Use %pMR in sprintf/seq_printf instead of batostr") Signed-off-by: Colin Ian King <colin.king@canonical.com> Signed-off-by: Marcel Holtmann <marcel@holtmann.org> Signed-off-by: Sasha Levin <sashal@kernel.org>

Diffstat (limited to 'CREDITS')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: