Hi,
Please backport commit:
0faf84caee63 ("cpufreq: Replace deprecated strncpy() with strscpy()")
to stable trees 5.10.y, 5.15.y, 6.1.y and 6.6.y. This commit fixes possible Buffer not null terminated of "policy->last_governor" and "default_governor" in __cpufreq_offline() and cpufreq_core_init().
This bug was discovered and resolved using Coverity Static Analysis Security Testing (SAST) by Synopsys, Inc.
Amazon Web Services Development Center Germany GmbH Krausenstr. 38 10117 Berlin Geschaeftsfuehrung: Christian Schlaeger, Jonathan Weiss Eingetragen am Amtsgericht Charlottenburg unter HRB 257764 B Sitz: Berlin Ust-ID: DE 365 538 597
On Sat, Nov 16, 2024 at 11:08:00AM +0000, Hemdan, Hagar Gamal Halim wrote:
Hi,
Please backport commit:
0faf84caee63 ("cpufreq: Replace deprecated strncpy() with strscpy()")
to stable trees 5.10.y, 5.15.y, 6.1.y and 6.6.y. This commit fixes possible Buffer not null terminated of "policy->last_governor" and "default_governor" in __cpufreq_offline() and cpufreq_core_init().
Are any in-kernel users actually affected by this? At a quick glance, I can't see any, so why would it need to be backported?
thanks,
greg k-h
linux-stable-mirror@lists.linaro.org
-
Greg KH -
Hemdan, Hagar Gamal Halim