Hi, On Fri, Sep 7, 2018 at 9:52 AM, Sudeep Holla <[email protected]> wrote: > Replace all the memcpy() for copying name strings from the firmware with > strlcpy() to make sure we are bounded by the source buffer size and we > also always have NULL-terminated strings. > > This is needed to avoid out of bounds accesses if the firmware returns > a non-terminated string. > > Reported-by: Olof Johansson <[email protected]> > Signed-off-by: Sudeep Holla <[email protected]>
In case I don't end up applying it: Acked-by: Olof Johansson <[email protected]> > Let me know if this is rc/fix material or need to wait for v4.20 ? I don't see a reason to merge this as a fix, it's more of a cleanup. -Olof
