scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (801f287c) · Commits · Mirrors / github.com / raspberrypi_linux · GitLab

Commit 801f287c authored Jul 22, 2023 by

Konstantin Shelekhin Committed by Martin K. Petersen Jul 31, 2023

scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()

The function lio_target_nacl_info_show() uses sprintf() in a loop to print
details for every iSCSI connection in a session without checking for the
buffer length. With enough iSCSI connections it's possible to overflow the
buffer provided by configfs and corrupt the memory.

This patch replaces sprintf() with sysfs_emit_at() that checks for buffer
boundries.

Signed-off-by: Konstantin Shelekhin <k.shelekhin@yadro.com>
Link: https://lore.kernel.org/r/20230722152657.168859-2-k.shelekhin@yadro.com

Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>

parent 06c2afb8

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 4738bf8b
· Oct 11, 2023

mentioned in commit 4738bf8b

mentioned in commit 4738bf8b2d3635c2944b81b2a84d97b8c8b0978d

Toggle commit list

Please register or to comment