Peter Maydell
authored
The TARGET_SYS_TMPNAM implementation has two bugs spotted by Coverity: * confusion about whether 'len' has the length of the string including or excluding the terminating NUL means we lock_user() len bytes of memory but memcpy() len + 1 bytes * In the error-exit cases we forget to free() the buffer that asprintf() returned to us Resolves: Coverity CID 1490285, 1490289 Signed-off-by:Peter Maydell <peter.maydell@linaro.org> Reviewed-by:
| Name | Last commit | Last update |
|---|---|---|
| .. | ||
| Kconfig | ||
| arm-compat-semi.c | ||
| config.c | ||
| console.c | ||
| guestfd.c | ||
| meson.build | ||
| syscalls.c | ||
| uaccess.c | ||