nand-utils: Fix integer overflow in nandflipbits.c - mtd-utils.git - A mirror of http://git.infradead.org/mtd-utils.git

diff options

author	Anton Moryakov <ant.v.moryakov@gmail.com>	2024-12-14 15:18:35 +0300
committer	David Oberhollenzer <david.oberhollenzer@sigma-star.at>	2024-12-17 14:34:23 +0100
commit	d4710ca5b5105d998e042a77cb66a2a5ac7bafb5 (patch)
tree	b013b3c206c389ccf30b1ed12afb15a298fafe3d /tests/ubifs_tools-tests/images/sb_log_lebs.gz
parent	cf3b826cac649caac853bc319b19be133372166f (diff)

nand-utils: Fix integer overflow in nandflipbits.c

Report of the static analyzer: The value of an arithmetic expression 'bit_to_flip->block * mtd.eb_size + blkoffs' is a subject to overflow because its operands are not cast to a larger data type before performing arith$ Corrections explained: Prevent arithmetic overflow in OOB read operation Resolved an issue where the calculation of the offset in the OOB read operation could overflow due to operands not being cast to a larger data type. Specifically, the multiplication of bi$ Triggers found by static analyzer Svace. Signed-off-by: Anton Moryakov <ant.v.moryakov@gmail.com> Reviewed-by: Zhihao Cheng <chengzhihao1@huawei.com> Signed-off-by: David Oberhollenzer <david.oberhollenzer@sigma-star.at>

Diffstat (limited to 'tests/ubifs_tools-tests/images/sb_log_lebs.gz')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: