From: Kees Cook <keesc...@chromium.org> Date: Fri, 5 May 2017 15:25:32 -0700
> Using memcpy() from a string that is shorter than the length copied means > the destination buffer is being filled with arbitrary data from the kernel > rodata segment. Instead, use strncpy() which will fill the trailing bytes > with zeros. > > This was found with the future CONFIG_FORTIFY_SOURCE feature. > > Cc: Daniel Micay <danielmi...@gmail.com> > Signed-off-by: Kees Cook <keesc...@chromium.org> Applied.
