Branch: refs/heads/master Home: https://github.com/bluez/bluez Commit: 2748c60a2c6b1b090a7507fdd23865a598129d61 https://github.com/bluez/bluez/commit/2748c60a2c6b1b090a7507fdd23865a598129d61 Author: Vlad Pruteanu <vlad.pruteanu@xxxxxxx> Date: 2024-07-09 (Tue, 09 Jul 2024) Changed paths: M profiles/audio/bap.c Log Message: ----------- bap: Wait for BIG Info report event before creating streams This makes it so that stream for each BIS is created after BIG Info report is received. This ensures that when the stream is created the encryption field is correctly set. Commit: aa6063aa66954ac8321211145d1ae6b434b2555c https://github.com/bluez/bluez/commit/aa6063aa66954ac8321211145d1ae6b434b2555c Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-07-09 (Tue, 09 Jul 2024) Changed paths: M profiles/health/mcap.c Log Message: ----------- health: mcap: add checks for NULL mcap_notify_error() It is necessary to prevent dereferencing of NULL pointers. Found with the SVACE static analysis tool. Commit: 11dcc9bf0dba61c83269fb3cf234579d6f9ef192 https://github.com/bluez/bluez/commit/11dcc9bf0dba61c83269fb3cf234579d6f9ef192 Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-07-09 (Tue, 09 Jul 2024) Changed paths: M src/shared/micp.c M src/shared/vcp.c Log Message: ----------- shared: prevent dereferencing of NULL pointers It is necessary to add checks for NULL before dereferencing pointers. Found with the SVACE static analysis tool. Commit: 755091581336dd6b6a710e599da9e1e52037851a https://github.com/bluez/bluez/commit/755091581336dd6b6a710e599da9e1e52037851a Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-07-09 (Tue, 09 Jul 2024) Changed paths: M src/settings.c Log Message: ----------- settings: limit string size in load_service() It is necessary to prevent buffer overflow by limiting the maximum string length. Found with the SVACE static analysis tool. Commit: 4ca662fcea1604e937bde1bddd5de2c50bcb6e00 https://github.com/bluez/bluez/commit/4ca662fcea1604e937bde1bddd5de2c50bcb6e00 Author: Roman Smirnov <r.smirnov@xxxxxx> Date: 2024-07-09 (Tue, 09 Jul 2024) Changed paths: M src/settings.c Log Message: ----------- settings: limit string size in gatt_db_load() It is necessary to prevent buffer overflow by limiting the maximum string length. Found with the SVACE static analysis tool. Compare: https://github.com/bluez/bluez/compare/34aca9a4fbcf...4ca662fcea16 To unsubscribe from these emails, change your notification settings at https://github.com/bluez/bluez/settings/notifications