[SCSI] esas2r: fix potential format string flaw

This makes sure format strings cannot leak into the printk call via the constructed buffer. Signed-off-by: N Kees Cook <keescook@chromium.org> Acked-by: N Bradley Grove <bgrove@attotech.com> Signed-off-by: N James Bottomley <JBottomley@Parallels.com>

[SCSI] esas2r: fix potential format string flaw
This makes sure format strings cannot leak into the printk call via the constructed buffer. Signed-off-by: N Kees Cook <keescook@chromium.org> Acked-by: N Bradley Grove <bgrove@attotech.com> Signed-off-by: N James Bottomley <JBottomley@Parallels.com>
b9c24466 · Kees Cook · James Bottomley · 2e706377 · b9c24466
隐藏空白更改
内联并排

Showing with 2 addition and 6 deletion

drivers/scsi/esas2r/esas2r_log.c drivers/scsi/esas2r/esas2r_log.c +2 -6

未找到文件。
--- a/drivers/scsi/esas2r/esas2r_log.c
+++ b/drivers/scsi/esas2r/esas2r_log.c
@@ -165,13 +165,9 @@ static int esas2r_log_master(const long level,

 		/*
 		 * Put a line break at the end of the formatted string so that
-		 * we don't wind up with run-on messages.  only append if there
-		 * is enough space in the buffer.
+		 * we don't wind up with run-on messages.
 		 */
-		if (strlen(event_buffer) < buflen)
-			strcat(buffer, "\n");
-
-		printk(event_buffer);
+		printk("%s\n", event_buffer);

 		spin_unlock_irqrestore(&event_buffer_lock, flags);
 	}