[LTP] [PATCH] syscalls/msgstress01: Fix off by one in array access
Martin Doucha
mdoucha@suse.cz
Fri May 24 14:01:52 CEST 2024
On 24. 05. 24 13:59, Cyril Hrubis wrote:
> Hi!
>> Then you should validate the received length against the send buffer.
>> Without any validation of the received length, there's a possibility of
>> buffer overflow.
>
> That is actually being done we compare the received lenght against the
> original buffer in:
>
> ...
>
> if (msg_recv.data.len != buff->msg.data.len) {
> tst_res(TFAIL, "Received the wrong message data length");
>
> ...
Ah, good, sorry I missed this. Let's go with the release then!
--
Martin Doucha mdoucha@suse.cz
SW Quality Engineer
SUSE LINUX, s.r.o.
CORSO IIa
Krizikova 148/34
186 00 Prague 8
Czech Republic
More information about the ltp
mailing list