The following issues were found
fs/dlm/plock.c
1 issues
Line: 441
Column: 4
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
op->info.owner == info.owner) {
struct plock_xop *xop = (struct plock_xop *)op;
list_del_init(&op->list);
memcpy(&op->info, &info, sizeof(info));
if (xop->callback)
do_callback = 1;
else
op->done = 1;
found = 1;
Reported by FlawFinder.
include/linux/percpu.h
1 issues
Line: 94
Column: 14
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
PCPU_FC_NR,
};
extern const char * const pcpu_fc_names[PCPU_FC_NR];
extern enum pcpu_fc pcpu_chosen_fc;
typedef void * (*pcpu_fc_alloc_fn_t)(unsigned int cpu, size_t size,
size_t align);
Reported by FlawFinder.
fs/xfs/libxfs/xfs_sb.c
1 issues
Line: 972
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
geo->rtextents = sbp->sb_rextents;
geo->logstart = sbp->sb_logstart;
BUILD_BUG_ON(sizeof(geo->uuid) != sizeof(sbp->sb_uuid));
memcpy(geo->uuid, &sbp->sb_uuid, sizeof(sbp->sb_uuid));
if (struct_version < 2)
return;
geo->sunit = sbp->sb_unit;
Reported by FlawFinder.
include/linux/spi/at73c213.h
1 issues
Line: 23
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct at73c213_board_info {
int ssc_id;
struct clk *dac_clk;
char shortname[32];
};
#endif /* __LINUX_SPI_AT73C213_H */
Reported by FlawFinder.
fs/dlm/netlink.c
1 issues
Line: 110
Column: 3
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
if (r) {
data->lockspace_id = r->res_ls->ls_global_id;
data->resource_namelen = r->res_length;
memcpy(data->resource_name, r->res_name, r->res_length);
}
}
void dlm_timeout_warn(struct dlm_lkb *lkb)
{
Reported by FlawFinder.
include/linux/phonet.h
1 issues
Line: 21
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
};
struct if_phonet_req {
char ifr_phonet_name[16];
union {
struct if_phonet_autoconf ifru_phonet_autoconf;
} ifr_ifru;
};
#define ifr_phonet_autoconf ifr_ifru.ifru_phonet_autoconf
Reported by FlawFinder.
fs/xfs/scrub/dabtree.c
1 issues
Line: 228
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
int plevel;
int error;
memcpy(altpath, path, sizeof(ds->state->altpath));
/*
* If the pointer is null, we shouldn't be able to move the upper
* level pointer anywhere.
*/
Reported by FlawFinder.
drivers/video/fbdev/via/dvi.c
1 issues
Line: 279
Column: 11
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct tmds_setting_information *tmds_setting)
{
int i, restore;
unsigned char EDID_DATA[18];
DEBUG_MSG(KERN_INFO "\n dvi_get_panel_size_from_DDCv1 \n");
restore = tmds_chip->tmds_chip_slave_addr;
tmds_chip->tmds_chip_slave_addr = 0xA0;
Reported by FlawFinder.
include/linux/phy_led_triggers.h
1 issues
Line: 22
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct phy_led_trigger {
struct led_trigger trigger;
char name[PHY_LINK_LED_TRIGGER_NAME_SIZE];
unsigned int speed;
};
extern int phy_led_triggers_register(struct phy_device *phy);
Reported by FlawFinder.
fs/xfs/xfs_buf_item_recover.c
1 issues
Line: 505
Column: 3
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
}
}
memcpy(xfs_buf_offset(bp,
(uint)bit << XFS_BLF_SHIFT), /* dest */
item->ri_buf[i].i_addr, /* source */
nbits<<XFS_BLF_SHIFT); /* length */
next:
i++;
Reported by FlawFinder.