From: Stefan Weil <weil@mail.berlios.de>
Date: Fri, 21 Jan 2011 21:50:30 +0000 (+0100)
Subject: check-qdict: Fix possible crash
X-Git-Url: http://git.maquefel.me/?a=commitdiff_plain;h=7464f0587b2938a3e10e9f995f384df8a5f298ac;p=qemu.git

check-qdict: Fix possible crash

This warning is reported by cppcheck:

check-qdict.c:270: warning: scanf without field width limits can crash with huge input data

Fix it by limiting the field widths to 127 (both key and value take
127 characters + a terminating '\0' byte).

Signed-off-by: Stefan Weil <weil@mail.berlios.de>
Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
---

diff --git a/check-qdict.c b/check-qdict.c
index 6afce5a5ca..ecc7fd7b90 100644
--- a/check-qdict.c
+++ b/check-qdict.c
@@ -267,8 +267,9 @@ static QString *read_line(FILE *file, char *key)
 {
     char value[128];
 
-    if (fscanf(file, "%s%s", key, value) == EOF)
+    if (fscanf(file, "%127s%127s", key, value) == EOF) {
         return NULL;
+    }
     remove_dots(key);
     return qstring_from_str(value);
 }