path: root/security
diff options
authorXi Wang <xi.wang@gmail.com>2011-12-20 18:39:41 -0500
committerAl Viro <viro@zeniv.linux.org.uk>2012-01-17 16:17:03 -0500
commit5afb8a3f96573f7ea018abb768f5b6ebe1a6c1a4 (patch)
treeda5f2278624eeb9dd09c91f3e9cfb6718a4b44ac /security
parent10d68360871657204885371cdf2594412675d2f9 (diff)
audit: fix signedness bug in audit_log_execve_info()
In the loop, a size_t "len" is used to hold the return value of audit_log_single_execve_arg(), which returns -1 on error. In that case the error handling (len <= 0) will be bypassed since "len" is unsigned, and the loop continues with (p += len) being wrapped. Change the type of "len" to signed int to fix the error handling. size_t len; ... for (...) { len = audit_log_single_execve_arg(...); if (len <= 0) break; p += len; } Signed-off-by: Xi Wang <xi.wang@gmail.com> Signed-off-by: Eric Paris <eparis@redhat.com>
Diffstat (limited to 'security')
0 files changed, 0 insertions, 0 deletions