projects / procps-ng / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 136e372) | patch
ps/display.c: Harden show_tree().
authorQualys Security Advisory <qsa@qualys.com>
Thu, 1 Jan 1970 00:00:00 +0000 (00:00 +0000)
committerCraig Small <csmall@enc.com.au>
Fri, 18 May 2018 21:32:21 +0000 (07:32 +1000)
commitbb9c217f29d768443b3020b6b09740de2923c6b1
tree947b79e38a92383701ccc30053b66e8c95c03529tree | snapshot
parent136e3724952827bbae8887a42d9d2b6f658a48abcommit | diff
ps/display.c: Harden show_tree().

1/ Do not go deeper than the size of forest_prefix[], to prevent a
buffer overflow (sizeof(forest_prefix) is roughly 128K, but the maximum
/proc/sys/kernel/pid_max is 4M). (actually, we go deeper, but we stop
adding bytes to forest_prefix[])

2/ Always null-terminate forest_prefix[] at the current level.
ps/display.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.