mir/criu
2
0
Fork 0
mirror of https://github.com/checkpoint-restore/criu synced 2025-08-31 06:15:24 +00:00
Code Issues Releases Wiki Activity

cr-dump: fix out-of-bounds write (OVERRUN)

Browse Source 
CID 73381 (#1 of 1): Out-of-bounds write (OVERRUN)
15. overrun-local: Overrunning array loc_buf of 4096 bytes at byte offset 4096 using index len (which evaluates to 4096).

CID 73355 (#1 of 1): Out-of-bounds write (OVERRUN)
6. overrun-local: Overrunning array loc_buf of 4096 bytes at byte offset 4096 using index ret (which evaluates to 4096)

Signed-off-by: Andrey Vagin <avagin@openvz.org>
Signed-off-by: Pavel Emelyanov <xemul@parallels.com>
This commit is contained in:
Andrey Vagin
2014-11-01 00:22:00 +04:00
committed by Pavel Emelyanov
parent 3bb7731c2e
commit c80048d215
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
cr-dump.c
View File

@@ -573,7 +573,7 @@ static int get_task_personality(pid_t pid, u32 *personality)
if (fd < 0)
goto err;
ret = read(fd, loc_buf, sizeof(loc_buf));
ret = read(fd, loc_buf, sizeof(loc_buf) - 1);
close(fd);
if (ret >= 0) {
@@ -756,7 +756,7 @@ static int parse_children(pid_t pid, pid_t **_c, int *_n)
if (fd < 0)
goto err;
len = read(fd, loc_buf, sizeof(loc_buf));
len = read(fd, loc_buf, sizeof(loc_buf) - 1);
close(fd);
if (len < 0)
goto err;