RFR: JDK-8298248: Limit sscanf outbut width in cgroup file parsers
Thomas Stuefe
stuefe at openjdk.org
Wed Dec 7 08:29:46 UTC 2022
Trivial.
GET_CONTAINER_INFO_CPTR should be called with limits for the output buffers. The usual 1K provided should be large enough normally. This just prevents intentionally malformed input from causing overwriters.
-------------
Commit messages:
- JDK-8298248-cgroup-sscanf-limit
Changes: https://git.openjdk.org/jdk/pull/11554/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=11554&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8298248
Stats: 6 lines in 1 file changed: 0 ins; 0 del; 6 mod
Patch: https://git.openjdk.org/jdk/pull/11554.diff
Fetch: git fetch https://git.openjdk.org/jdk pull/11554/head:pull/11554
PR: https://git.openjdk.org/jdk/pull/11554
More information about the hotspot-runtime-dev
mailing list