Security vulnerabilities and automated fixes for kernel programming issues
1 post found
A high-severity buffer overflow vulnerability was discovered in `libopencas/libopencas.c` at line 170, where a family name string was copied into a netlink attribute (NLA) buffer without first validating that the name fits within the available space. An attacker supplying an excessively long name could overflow the NLA buffer, corrupting adjacent kernel-space memory. The fix adds a two-line bounds check before the `memcpy()` call, ensuring the operation is rejected with `-EINVAL` if the name wou