| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250713025744.1091545-1-haoranwangsec@gmail.com>
Date: Sun, 13 Jul 2025 10:57:44 +0800
From: Wang Haoran <haoranwangsec@...il.com>
To: tony.luck@...el.com,
bp@...en8.de
Cc: james.morse@....com,
mchehab@...nel.org,
rric@...nel.org,
linux-edac@...r.kernel.org,
linux-kernel@...r.kernel.org,
Wang Haoran <haoranwangsec@...il.com>
Subject: [PATCH] edac: Use scnprintf() for safer buffer handling
snprintf() is fragile when its return value will be used to append additional data to a buffer. Use scnprintf() instead.
Signed-off-by: Wang Haoran (Vul337) <haoranwangsec@...il.com>
---
drivers/edac/skx_common.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/drivers/edac/skx_common.c b/drivers/edac/skx_common.c
index c9ade45c1a99..39c733dbc5b9 100644
--- a/drivers/edac/skx_common.c
+++ b/drivers/edac/skx_common.c
@@ -670,12 +670,12 @@ static void skx_mce_output_error(struct mem_ctl_info *mci,
}
if (res->decoded_by_adxl) {
- len = snprintf(skx_msg, MSG_SIZE, "%s%s err_code:0x%04x:0x%04x %s",
+ len = scnprintf(skx_msg, MSG_SIZE, "%s%s err_code:0x%04x:0x%04x %s",
overflow ? " OVERFLOW" : "",
(uncorrected_error && recoverable) ? " recoverable" : "",
mscod, errcode, adxl_msg);
} else {
- len = snprintf(skx_msg, MSG_SIZE,
+ len = scnprintf(skx_msg, MSG_SIZE,
"%s%s err_code:0x%04x:0x%04x ProcessorSocketId:0x%x MemoryControllerId:0x%x PhysicalRankId:0x%x Row:0x%x Column:0x%x Bank:0x%x BankGroup:0x%x",
overflow ? " OVERFLOW" : "",
(uncorrected_error && recoverable) ? " recoverable" : "",
--
2.43.0
Powered by blists - more mailing lists