Fixed security vulnerability if writing unterminated max length string.

1dc5214a · Christian Löpke · 72b81bfa · 1dc5214a
Commit 1dc5214a authored 9 years ago by Christian Löpke
--- a/20160425/chardev-1write.c
+++ b/20160425/chardev-1write.c
@@ -183,7 +183,7 @@ device_write(struct file *filp, const char *buff, size_t len, loff_t * off)
 	/* Since nobody wants to read I have to correct the already told you
 	   counter! */
 	told_you_counter--;
-	if(len > USERBUF_LEN) {
+	if(len >= USERBUF_LEN) {
 		printk(	KERN_WARNING 
 			"%s: Sorry, your input is too long. Max %d allowed!\n",
 			DEVICE_NAME,