Branch: refs/heads/957841 Home: https://github.com/bluez/bluez Commit: e99742221211b5516bad849f2d213f21ddcbe06a https://github.com/bluez/bluez/commit/e99742221211b5516bad849f2d213f21ddcbe06a Author: Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx> Date: 2025-04-28 (Mon, 28 Apr 2025) Changed paths: M src/main.c Log Message: ----------- main: Fix comparison of narrow type with wide type in loop condition In a loop condition, comparison of a value of a narrow type with a value of a wide type may result in unexpected behavior if the wider value is sufficiently large (or small). Fixes: https://github.com/bluez/bluez/issues/1213 Commit: 95d86f50e633750e19ed53fc54c09b683724cd71 https://github.com/bluez/bluez/commit/95d86f50e633750e19ed53fc54c09b683724cd71 Author: Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx> Date: 2025-04-28 (Mon, 28 Apr 2025) Changed paths: M client/mgmt.c Log Message: ----------- client/mgmt: Fix comparison of narrow type with wide type in loop condition In a loop condition, comparison of a value of a narrow type with a value of a wide type may result in unexpected behavior if the wider value is sufficiently large (or small). Fixes: https://github.com/bluez/bluez/issues/1211 Commit: 4018a89f1f50e11b1a9ab2b338bc44761880829e https://github.com/bluez/bluez/commit/4018a89f1f50e11b1a9ab2b338bc44761880829e Author: Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx> Date: 2025-04-28 (Mon, 28 Apr 2025) Changed paths: M tools/test-runner.c Log Message: ----------- test-runner: Fix potentially overflowing call to snprintf The return value of a call to snprintf is the number of characters that would have been written to the buffer assuming there was sufficient space. In the event that the operation reaches the end of the buffer and more than one character is discarded, the return value will be greater than the buffer size. Fixes: https://github.com/bluez/bluez/issues/1215 Commit: 27bc1ce18a40543e92787e673630c8b655f9f9ec https://github.com/bluez/bluez/commit/27bc1ce18a40543e92787e673630c8b655f9f9ec Author: Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx> Date: 2025-04-28 (Mon, 28 Apr 2025) Changed paths: M client/mgmt.c Log Message: ----------- client/mgmt: Fix potentially overflowing call to snprintf The return value of a call to snprintf is the number of characters that would have been written to the buffer assuming there was sufficient space. In the event that the operation reaches the end of the buffer and more than one character is discarded, the return value will be greater than the buffer size. Fixes: https://github.com/bluez/bluez/issues/1216 Fixes: https://github.com/bluez/bluez/issues/1217 Fixes: https://github.com/bluez/bluez/issues/1218 Fixes: https://github.com/bluez/bluez/issues/1219 Commit: cc95d1000371c6d9452f57aa9eb66a8a58aa8651 https://github.com/bluez/bluez/commit/cc95d1000371c6d9452f57aa9eb66a8a58aa8651 Author: Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx> Date: 2025-04-28 (Mon, 28 Apr 2025) Changed paths: M src/shared/bap.c Log Message: ----------- shared/bap: Too few arguments to formatting function Each call to the printf function, or a related function, should include the number of arguments defined by the format. Passing the function more arguments than required is harmless (although it may be indicative of other defects). However, passing the function fewer arguments than are defined by the format can be a security vulnerability since the function will process the next item on the stack as the missing arguments. Fixes: https://github.com/bluez/bluez/issues/1221 Fixes: https://github.com/bluez/bluez/issues/1222 Compare: https://github.com/bluez/bluez/compare/e99742221211%5E...cc95d1000371 To unsubscribe from these emails, change your notification settings at https://github.com/bluez/bluez/settings/notifications
