/[base]
ViewVC logotype

Revision 304532

Jump to revision: Previous Next
Author: tsoome
Date: Sat Aug 20 16:23:19 2016 UTC (7 years, 10 months ago)
Changed paths: 8
Log Message: 
loader is filling fixed length command_errbuf with sprintf() and is trusting
strings provided by user/config files. This update is replacing sprintf with
snprintf for cases the command_errbuf is built from dynamic content.

PR:		211958
Reported by:	ecturt@gmail.com
Reviewed by:	imp, allanjude
Approved by:	imp (mentor), allanjude (mentor)
Differential Revision:	https://reviews.freebsd.org/D7563

Changed paths

Path Details
Directoryhead/sys/boot/common/boot.c modified , text changed
Directoryhead/sys/boot/common/bootstrap.h modified , text changed
Directoryhead/sys/boot/common/commands.c modified , text changed
Directoryhead/sys/boot/common/interp.c modified , text changed
Directoryhead/sys/boot/common/ls.c modified , text changed
Directoryhead/sys/boot/common/module.c modified , text changed
Directoryhead/sys/boot/efi/loader/arch/amd64/framebuffer.c modified , text changed
Directoryhead/sys/boot/fdt/fdt_loader_cmd.c modified , text changed
  ViewVC Help
Powered by ViewVC 1.1.27