| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20181001112246.4dcbc4fd@canb.auug.org.au>
Date: Mon, 1 Oct 2018 11:22:46 +1000
From: Stephen Rothwell <sfr@...b.auug.org.au>
To: Sasha Levin <Alexander.Levin@...rosoft.com>
Cc: "stable@...r.kernel.org" <stable@...r.kernel.org>,
"linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>,
Steven French <Steven.French@...rosoft.com>
Subject: Re: [PATCH AUTOSEL 4.18 39/65] fs/cifs: suppress a string overflow
warning
Hi Sasha,
On Mon, 1 Oct 2018 00:38:27 +0000 Sasha Levin <Alexander.Levin@...rosoft.com> wrote:
>
> From: Stephen Rothwell <sfr@...b.auug.org.au>
>
> [ Upstream commit bcfb84a996f6fa90b5e6e2954b2accb7a4711097 ]
>
> A powerpc build of cifs with gcc v8.2.0 produces this warning:
>
> fs/cifs/cifssmb.c: In function ‘CIFSSMBNegotiate’:
> fs/cifs/cifssmb.c:605:3: warning: ‘strncpy’ writing 16 bytes into a region of size 1 overflows the destination [-Wstringop-overflow=]
> strncpy(pSMB->DialectsArray+count, protocols[i].name, 16);
> ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
> Since we are already doing a strlen() on the source, change the strncpy
> to a memcpy().
>
> Signed-off-by: Stephen Rothwell <sfr@...b.auug.org.au>
> Signed-off-by: Steve French <stfrench@...rosoft.com>
> Signed-off-by: Sasha Levin <alexander.levin@...rosoft.com>
Just wondering if this should be included as it only fixes a build
warning, there is no actual bug. Same for the 4.9 and 4.14 versions.
--
Cheers,
Stephen Rothwell
Content of type "application/pgp-signature" skipped
Powered by blists - more mailing lists