Branch: refs/heads/master Home: https://github.com/bluez/bluez Commit: 920c4576907dfe292c733be4c413a49bd8fffe66 https://github.com/bluez/bluez/commit/920c4576907dfe292c733be4c413a49bd8fffe66 Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-06-28 (Fri, 28 Jun 2024) Changed paths: M src/shared/bass.c Log Message: ----------- bass: add NULL check to bass_bcast_src_free() Make bass_bcast_src_free() safe for passing NULL pointers. Commit: ee12a631caef13b92603363fc7155f5794920ad0 https://github.com/bluez/bluez/commit/ee12a631caef13b92603363fc7155f5794920ad0 Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-06-28 (Fri, 28 Jun 2024) Changed paths: M src/adapter.c Log Message: ----------- core: add NULL check to adapter_service_remove() Make adapter_service_remove() safe for passing NULL pointers. Commit: 0bd3d1505e3a9f8b48768411b837dac80b21827e https://github.com/bluez/bluez/commit/0bd3d1505e3a9f8b48768411b837dac80b21827e Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-06-28 (Fri, 28 Jun 2024) Changed paths: M tools/l2test.c Log Message: ----------- l2test: replace sprintf() with snprintf() in recv_mode() Use snprintf() instead of sprintf() to avoid buffer overflow. Found with the SVACE static analysis tool Commit: 9886a7557b3cd2e744cfb5d12679228a4caea1aa https://github.com/bluez/bluez/commit/9886a7557b3cd2e744cfb5d12679228a4caea1aa Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-06-28 (Fri, 28 Jun 2024) Changed paths: M profiles/audio/mcp.c Log Message: ----------- mcp: replace sprintf() with snprintf() in cb_track_duration() Use snprintf() instead of sprintf() to avoid buffer overflow. Found with the SVACE static analysis tool Commit: 559e40a8b9a413119cebe2f5dfa2ece04daff6ff https://github.com/bluez/bluez/commit/559e40a8b9a413119cebe2f5dfa2ece04daff6ff Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-06-28 (Fri, 28 Jun 2024) Changed paths: M tools/rctest.c Log Message: ----------- rctest: replace sprintf() with snprintf() in recv_mode() Use snprintf() instead of sprintf() to avoid buffer overflow. Found with the SVACE static analysis tool. Commit: 0ddcfaeafad6ae71b3495bdfb174773aceb3e996 https://github.com/bluez/bluez/commit/0ddcfaeafad6ae71b3495bdfb174773aceb3e996 Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-06-28 (Fri, 28 Jun 2024) Changed paths: M src/shared/gatt-server.c Log Message: ----------- gatt-server: fix memory leak in bt_gatt_server_send_notification() data-pdu is allocated but not released when an error occurs. Add data-pdu release before exiting the function in case of an error. Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool. Compare: https://github.com/bluez/bluez/compare/e3616b776ae0...0ddcfaeafad6 To unsubscribe from these emails, change your notification settings at https://github.com/bluez/bluez/settings/notifications
