ich777/linux_media
1
0
Fork 0
mirror of https://github.com/tbsdtv/linux_media.git synced 2025-07-23 12:43:29 +02:00
Code Issues Packages Projects Releases Wiki Activity

mmc: vub300: Use scnprintf() for avoiding potential buffer overflow

Browse Source 
Since snprintf() returns the would-be-output size instead of the
actual output size, the succeeding calls may go beyond the given
buffer limit.  Fix it by replacing with scnprintf().

Signed-off-by: Takashi Iwai <tiwai@suse.de>
Link: https://lore.kernel.org/r/20200311080439.13928-1-tiwai@suse.de
Signed-off-by: Ulf Hansson <ulf.hansson@linaro.org>
This commit is contained in:
Takashi Iwai
2020-03-11 09:04:39 +01:00
committed by Ulf Hansson
parent 398b25003d
commit 6bbcf74dd9
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
drivers/mmc/host/vub300.c
View File

@@ -1363,7 +1363,7 @@ static void download_offload_pseudocode(struct vub300_mmc_host *vub300)
int retval; int retval;
for (n = 0; n < sdio_funcs; n++) { for (n = 0; n < sdio_funcs; n++) {
struct sdio_func *sf = card->sdio_func[n]; struct sdio_func *sf = card->sdio_func[n];
l += snprintf(vub300->vub_name + l, l += scnprintf(vub300->vub_name + l,
sizeof(vub300->vub_name) - l, "_%04X%04X", sizeof(vub300->vub_name) - l, "_%04X%04X",
sf->vendor, sf->device); sf->vendor, sf->device);
} }