The following issues were found
drivers/soc/qcom/cmd-db.c
1 issues
Line: 151
Column: 2
CWE codes:
120
return ret;
/* Pad out query string to same length as in DB */
strncpy(query, id, sizeof(query));
for (i = 0; i < MAX_SLV_ID; i++) {
rsc_hdr = &cmd_db_header->header[i];
if (!rsc_hdr->slv_id)
break;
Reported by FlawFinder.
drivers/soc/qcom/apr.c
1 issues
Line: 92
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
return -ENOMEM;
abuf->len = len;
memcpy(abuf->buf, buf, len);
spin_lock_irqsave(&apr->rx_lock, flags);
list_add_tail(&abuf->node, &apr->rx_list);
spin_unlock_irqrestore(&apr->rx_lock, flags);
Reported by FlawFinder.
drivers/soc/mediatek/mtk-pmic-wrap.c
1 issues
Line: 1381
Column: 9
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
u32 rdata;
u32 i;
u32 pass = 0;
signed char dly[16] = {
-1, 0, 1, 0, 2, -1, 1, 1, 3, -1, -1, -1, 3, -1, 2, 1
};
for (i = 0; i < 4; i++) {
pwrap_writel(wrp, i, PWRAP_SIDLY);
Reported by FlawFinder.
drivers/tty/mxser.c
1 issues
Line: 957
Column: 3
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
if (c <= 0)
break;
memcpy(info->port.xmit_buf + info->xmit_head, buf, c);
spin_lock_irqsave(&info->slock, flags);
info->xmit_head = (info->xmit_head + c) &
(SERIAL_XMIT_SIZE - 1);
info->xmit_cnt += c;
spin_unlock_irqrestore(&info->slock, flags);
Reported by FlawFinder.
drivers/tty/pty.c
1 issues
Line: 859
Column: 28
CWE codes:
362
}
tty->link->driver_data = dentry;
retval = ptm_driver->ops->open(tty, filp);
if (retval)
goto err_release;
tty_debug_hangup(tty, "opening (count=%d)\n", tty->count);
Reported by FlawFinder.
drivers/tty/serial/8250/8250.h
1 issues
Line: 70
Column: 11
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
unsigned short fifo_size;
unsigned short tx_loadsz;
unsigned char fcr;
unsigned char rxtrig_bytes[UART_FCR_R_TRIG_MAX_STATE];
unsigned int flags;
};
#define UART_CAP_FIFO BIT(8) /* UART has FIFO */
#define UART_CAP_EFR BIT(9) /* UART has EFR */
Reported by FlawFinder.
drivers/tty/serial/8250/8250_fintek.c
1 issues
Line: 477
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
if (!pdata)
return -ENOMEM;
memcpy(pdata, &probe_data, sizeof(probe_data));
uart->port.private_data = pdata;
fintek_8250_set_rs485_handler(uart);
fintek_8250_set_termios_handler(uart);
return 0;
Reported by FlawFinder.
drivers/tty/serial/ip22zilog.c
1 issues
Line: 69
Column: 11
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct uart_ip22zilog_port *next;
/* Current values of Zilog write registers. */
unsigned char curregs[NUM_ZSREGS];
unsigned int flags;
#define IP22ZILOG_FLAG_IS_CONS 0x00000004
#define IP22ZILOG_FLAG_IS_KGDB 0x00000008
#define IP22ZILOG_FLAG_MODEM_STATUS 0x00000010
Reported by FlawFinder.
drivers/tty/serial/kgdb_nmi.c
1 issues
Line: 120
Column: 13
CWE codes:
126
static int n;
int c;
const char *magic = kgdb_nmi_magic;
size_t m = strlen(magic);
bool printch = false;
c = dbg_io_ops->read_char();
if (c == NO_POLL_CHAR)
return c;
Reported by FlawFinder.
drivers/tty/serial/max310x.c
1 issues
Line: 249
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
#define MAX14830_REV_ID (0xb0)
struct max310x_devtype {
char name[9];
int nr;
u8 mode1;
int (*detect)(struct device *);
void (*power)(struct uart_port *, int);
};
Reported by FlawFinder.