http://bugzilla.opensuse.org/show_bug.cgi?id=1041840 Bug ID: 1041840 Summary: Buffer overflow in /usr/bin/initviocons Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: x86-64 OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Other Assignee: bnc-team-screening@forge.provo.novell.com Reporter: daniel@planethacker.net QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- To reproduce this bug: /usr/bin/initviocons -F `perl -e 'print "A" x 8192'` in main.c, main() function: char device[128] = ""; ... ... ... case 'F': sprintf(device, "%s", optarg); break; Changing to snprintf should resolve this. Kind regards, Daniel Roberson -- You are receiving this mail because: You are on the CC list for the bug.