[sane-devel] bug #303798: possible buffer overflow in fujitsu.c

Johannes Meixner jsmeix at suse.de
Thu Aug 31 12:49:15 UTC 2006


right now I submitted

I am not sure how to fix it.

For the compiler it would be o.k. to simply use
          unsigned char buffer[11];
so that
              s->hw_ink_remain = get_HW_ink_remain(buffer);
which is actually after expansion of the define
              s->hw_ink_remain = buffer[10];
is o.k. for the compiler.

But this does not mean that s->hw_ink_remain contains what is
really intended - I don't know anything about Fujitsu scanners.

Kind Regards
Johannes Meixner
SUSE LINUX Products GmbH, Maxfeldstrasse 5      Mail: jsmeix at suse.de
90409 Nuernberg, Germany                    WWW: http://www.suse.de/

More information about the sane-devel mailing list