The 'check' pointer is incremented in both the for-loop's update statement, as well as, in the body of the loop. This means only every second character is actually checked for low-ascii, and potentially, bytes beyond the string's null-terminator can be attempted to be accessed. You can view, comment on, or merge this pull request online at:
https://github.com/openzfs/openzfs/pull/47 -- Commit Summary -- * Possible access beyond end of string in zpool comment -- File Changes -- M usr/src/uts/common/fs/zfs/spa.c (1) -- Patch Links -- https://github.com/openzfs/openzfs/pull/47.patch https://github.com/openzfs/openzfs/pull/47.diff --- Reply to this email directly or view it on GitHub: https://github.com/openzfs/openzfs/pull/47
_______________________________________________ developer mailing list [email protected] http://lists.open-zfs.org/mailman/listinfo/developer
