diff options
author | Yury Usishchev <y.usishchev@samsung.com> | 2016-07-25 10:41:31 +0300 |
---|---|---|
committer | kyungwook tak <k.tak@samsung.com> | 2016-08-15 21:47:41 -0700 |
commit | 45742988d3e455d0b12a5d2ab04aa5f2d32a2820 (patch) | |
tree | c1f5c5165c04d84f6d6253c0f3837e13d0a09cf2 | |
parent | 7fa70a45c49542188e9ea31fce7e4d5850fd62b7 (diff) | |
download | key-manager-45742988d3e455d0b12a5d2ab04aa5f2d32a2820.tar.gz key-manager-45742988d3e455d0b12a5d2ab04aa5f2d32a2820.tar.bz2 key-manager-45742988d3e455d0b12a5d2ab04aa5f2d32a2820.zip |
Fix global-buffer-overflow in sqlcipher.c
null-terminated string(pVfs->zName) has no assurance that the length
is longer than 10 so buffer-overflow can occured
Change-Id: I9dad1321ba2e8be4260feb33eb3874bb2c6cbb09
Signed-off-by: Yury Usishchev <y.usishchev@samsung.com>
-rw-r--r-- | src/manager/sqlcipher/sqlcipher.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/manager/sqlcipher/sqlcipher.c b/src/manager/sqlcipher/sqlcipher.c index 3d7f6671..2008e5ae 100644 --- a/src/manager/sqlcipher/sqlcipher.c +++ b/src/manager/sqlcipher/sqlcipher.c @@ -31169,7 +31169,7 @@ static int fillInUnixFile( OSTRACE(("OPEN %-3d %s\n", h, zFilename)); pNew->h = h; pNew->zPath = zFilename; - if( memcmp(pVfs->zName,"unix-excl",10)==0 ){ + if( strcmp(pVfs->zName,"unix-excl")==0 ){ pNew->ctrlFlags = UNIXFILE_EXCL; }else{ pNew->ctrlFlags = 0; |