| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20260106171610.124138-2-katharasasikumar007@gmail.com> Date: Tue, 6 Jan 2026 17:16:11 +0000 From: Kathara Sasikumar <katharasasikumar007@...il.com> To: alex.aring@...il.com, horms@...nel.org Cc: davem@...emloft.net, edumazet@...gle.com, kuba@...nel.org, pabeni@...hat.com, linux-bluetooth@...r.kernel.org, linux-wpan@...r.kernel.org, netdev@...r.kernel.org, linux-kernel@...r.kernel.org, Kathara Sasikumar <katharasasikumar007@...il.com> Subject: [PATCH v2 net-next] net: 6lowpan: replace sprintf() with scnprintf() in debugfs sprintf() does not perform bounds checking on the destination buffer. Replace it with scnprintf() to ensure the write stays within bounds. No functional change intended. Signed-off-by: Kathara Sasikumar <katharasasikumar007@...il.com> --- v2: - Updated commit message wording - Targeted the patch to net-next --- net/6lowpan/debugfs.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/net/6lowpan/debugfs.c b/net/6lowpan/debugfs.c index 600b9563bfc5..d45ace484143 100644 --- a/net/6lowpan/debugfs.c +++ b/net/6lowpan/debugfs.c @@ -173,7 +173,7 @@ static void lowpan_dev_debugfs_ctx_init(struct net_device *dev, if (WARN_ON_ONCE(id >= LOWPAN_IPHC_CTX_TABLE_SIZE)) return; - sprintf(buf, "%d", id); + scnprintf(buf, sizeof(buf), "%d", id); root = debugfs_create_dir(buf, ctx); -- 2.51.0
Powered by blists - more mailing lists