Commit 44031190 authored Sep 20, 2024 by Takashi Iwai Committed by Greg Kroah-Hartman Oct 22, 2024

parport: Proper fix for array out-of-bounds access



commit 02ac3a9e upstream.

The recent fix for array out-of-bounds accesses replaced sprintf()
calls blindly with snprintf().  However, since snprintf() returns the
would-be-printed size, not the actually output size, the length
calculation can still go over the given limit.

Use scnprintf() instead of snprintf(), which returns the actually
output letters, for addressing the potential out-of-bounds access
properly.

Fixes: ab11dac9 ("dev/parport: fix the array out-of-bounds risk")
Cc: stable@vger.kernel.org
Signed-off-by: Takashi Iwai <tiwai@suse.de>
Link: https://lore.kernel.org/r/20240920103318.19271-1-tiwai@suse.de


Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

parent 88a89207

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit f00e8bc3
· Nov 05, 2025

mentioned in commit f00e8bc3

mentioned in commit f00e8bc3372e3c159248636cf1180a1ad712f442

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 43283148
· Nov 05, 2025

mentioned in commit 43283148

mentioned in commit 4328314829026b80ecbb5aa9ff83402856147c77

Toggle commit list

Please to comment