[U-Boot] [PATCH 1/1] easylogo: avoid buffer overrun
Heinrich Schuchardt
xypron.glpk at gmx.de
Thu Aug 15 21:54:15 UTC 2019
Building easylogo with `HOST_TOOLS_ALL=y make tools` results in a build
warning due to a possible buffer overrun:
tools/easylogo/easylogo.c:453:4: note: ‘sprintf’ output between 7 and
262 bytes into a destination of size 256
sprintf (str, "%s, 0x%02x", app, *dataptr++);
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Truncate the output to fit into the destination buffer.
Signed-off-by: Heinrich Schuchardt <xypron.glpk at gmx.de>
---
tools/easylogo/easylogo.c | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/tools/easylogo/easylogo.c b/tools/easylogo/easylogo.c
index 4ba86bf760..ed4bf203dd 100644
--- a/tools/easylogo/easylogo.c
+++ b/tools/easylogo/easylogo.c
@@ -450,7 +450,8 @@ int image_save_header (image_t * image, char *filename, char *varname)
default:
strcpy (app, str);
- sprintf (str, "%s, 0x%02x", app, *dataptr++);
+ sprintf(str, "%.*s, 0x%02x", (int)sizeof(str) - 7, app,
+ *dataptr++);
col++;
count--;
break;
--
2.20.1
More information about the U-Boot
mailing list