[PATCH] cmd: elf: Prevent possible buffer overflow
Tom Rini
trini at konsulko.com
Tue Jul 29 02:20:38 CEST 2025
On Mon, 21 Jul 2025 15:43:36 +0100, Andrew Goodbody wrote:
> In do_bootvx the environment variable 'bootdev' is fetched and copied
> into a buffer without confirming that it will not overflow that buffer.
> Use strlcpy to ensure that the buffer will not be overflowed.
>
> This issue was found by Smatch.
>
>
> [...]
Applied to u-boot/master, thanks!
[1/1] cmd: elf: Prevent possible buffer overflow
commit: b83f865e75aecf7edbc75c3794b3e29ef5bff5a2
--
Tom
More information about the U-Boot
mailing list