[lvc-project] [PATCH] net: benet: use snprintf instead sprintf and IFNAMSIZ instead hardcoded constant.
Stephen Hemminger
stephen at networkplumber.org
Tue Oct 4 18:29:36 MSK 2022
On Tue, 4 Oct 2022 12:50:34 +0300
Peter Kosyh <pkosyh at yandex.ru> wrote:
> printf to array 'eqo->desc' of size 32 may cause buffer overflow when
> using non-standard IFNAMSIZ.
>
> Found by Linux Verification Center (linuxtesting.org) with SVACE.
>
> Signed-off-by: Peter Kosyh <pkosyh at yandex.ru>
NACK
Non-standard IFNAMSIZ will break uapi and many things.
I see no reason for kernel or tools like iproute2 to support or
fix those related bugs.
More information about the lvc-project
mailing list