Google Git
Sign in
pigweed / third_party / github / zephyrproject-rtos / zephyr / ababbf781563ff1a866ee3847f9f55098eda9023
commitababbf781563ff1a866ee3847f9f55098eda9023[log] [tgz]
authorInaky Perez-Gonzalez <inaky.perez-gonzalez@intel.com>Wed Nov 16 15:42:53 2016 -0800
committerAnas Nashif <nashif@linux.intel.com>Fri Nov 18 23:04:32 2016 +0000
tree776287b2cd99e2c13d6b51f0950f018724b13fc1
parentc9aabcf2824ac55a57e6adb8584bf6951e86f1ac [diff]
scrips/kconfig: use snprintf() vs sprintf()

Coverity reported 150819 issue, which steams off Flex generated code
from zconf.l in which sprintf() was use. Because of that, the
conf_read_simple() @name parameter could be used to overrun
zconf_open() @fullname by crafting SRCTREE and KCONFIG_ALLCONFIG
environment variables.

Change-Id: I2cff817dccafe0e06b35636bbb7be95e062410af
Coverity-ID: 150819
Signed-off-by: Inaky Perez-Gonzalez <inaky.perez-gonzalez@intel.com>
1 file changed
tree: 776287b2cd99e2c13d6b51f0950f018724b13fc1
  1. .known-issues/
  2. arch/
  3. boards/
  4. doc/
  5. drivers/
  6. ext/
  7. include/
  8. kernel/
  9. lib/
  10. misc/
  11. net/
  12. samples/
  13. scripts/
  14. subsys/
  15. tests/
  16. .checkpatch.conf
  17. .gitattributes
  18. .gitignore
  19. .gitreview
  20. .mailmap
  21. defaults.tc
  22. Kbuild
  23. Kconfig
  24. Kconfig.zephyr
  25. LICENSE
  26. LICENSING.rst
  27. MAINTAINERS
  28. Makefile
  29. Makefile.inc
  30. zephyr-env.sh