e23ed1b330
The ZPOOL_SCRIPTS_PATH environment variable can be passed here. This allows for arbitrarily long strings to be passed to sprintf(), which can overflow the buffer. I missed this in my earlier audit of the codebase. CodeQL's cpp/unbounded-write check caught this. Reviewed-by: Damian Szuberski <szuberskidamian@gmail.com> Reviewed-by: Alexander Motin <mav@FreeBSD.org> Reviewed-by: Brian Behlendorf <behlendorf1@llnl.gov> Signed-off-by: Richard Yao <richard.yao@alumni.stonybrook.edu> Closes #14264 |
||
|---|---|---|
| .. | ||
| compatibility.d | ||
| os | ||
| zpool.d | ||
| .gitignore | ||
| Makefile.am | ||
| zpool_iter.c | ||
| zpool_main.c | ||
| zpool_util.c | ||
| zpool_util.h | ||
| zpool_vdev.c | ||