zfs/cmd/zpool
Richard Yao ba87ed1410 Fix potential buffer overflow in zpool command
The ZPOOL_SCRIPTS_PATH environment variable can be passed here. This
allows for arbitrarily long strings to be passed to sprintf(), which can
overflow the buffer.

I missed this in my earlier audit of the codebase. CodeQL's
cpp/unbounded-write check caught this.

Reviewed-by: Damian Szuberski <szuberskidamian@gmail.com>
Reviewed-by: Alexander Motin <mav@FreeBSD.org>
Reviewed-by: Brian Behlendorf <behlendorf1@llnl.gov>
Signed-off-by: Richard Yao <richard.yao@alumni.stonybrook.edu>
Closes #14264
2022-12-08 14:14:30 -08:00
..
compatibility.d Add compatibility file sets (ZoL 0.6.1, 0.6.4, OpenZFS 2.1) 2021-03-31 09:40:25 -07:00
os Replace dead opensolaris.org license link 2022-07-11 14:16:13 -07:00
zpool.d Workaround broken VDEV_UPATH 2022-05-10 10:14:07 -07:00
Makefile.am Replace EXTRA_DIST with dist_noinst_DATA 2022-05-26 09:24:50 -07:00
zpool_iter.c Replace dead opensolaris.org license link 2022-07-11 14:16:13 -07:00
zpool_main.c Fix potential buffer overflow in zpool command 2022-12-08 14:14:30 -08:00
zpool_util.c Replace dead opensolaris.org license link 2022-07-11 14:16:13 -07:00
zpool_util.h Replace dead opensolaris.org license link 2022-07-11 14:16:13 -07:00
zpool_vdev.c zpool: fix redundancy check after vdev removal 2022-08-04 17:02:57 -07:00