CVE-2021-47642
Published: Feb 26, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow Coverity complains of a possible buffer overflow. However, given the 'static' scope of nvidia_setup_i2c_bus() it looks like that can't happen after examiniing the call sites. CID 19036 (#1 of 1): Copy into fixed size buffer (STRING_OVERFLOW) 1. fixed_size_dest: You might overrun the 48-character fixed-size string chan->adapter.name by copying name without checking the length. 2. parameter_as_source: Note: This defect has an elevated risk because the source argument is a parameter of the current function. 89 strcpy(chan->adapter.name, name); Fix this warning by using strscpy() which will silence the warning and prevent any future buffer overflows should the names used to identify the channel become much longer.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 47e5533adf118afaf06d25a3e2aaaab89371b1c5affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 580e5d3815474b8349250c25c16416585a72c7feaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 72dd5c46a152136712a55bf026a9aa8c1b12b60daffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 055cdd2e7b992921424d4daaa285ced787fb205faffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 08dff482012758935c185532b1ad7d584785a86e+4 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 4.9.311 - <= 4.9.*unaffected 4.14.276 - <= 4.14.*unaffected 4.19.238 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now