Description of problem: [nwfilter/nwfilter_dhcpsnoop.c:1962]: (error) Width 16 given in format string (no. 3) is larger than destination buffer 'ipstr[16]', use %15s to prevent overflowing it. [nwfilter/nwfilter_dhcpsnoop.c:1962]: (error) Width 16 given in format string (no. 4) is larger than destination buffer 'srvstr[16]', use %15s to prevent overflowing it. Source code is if (sscanf(line, "%u %55s %16s %16s", &ipl.timeout, ifkey, ipstr, srvstr) < 4) { Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Fixed in: commit 152e315433f2ff69a5e91a2269812918da2ce091 Author: Erik Skultety <eskultet> Date: Tue Jun 2 09:25:04 2015 +0200 nwfilter: Fix sscanf off-by-one error in virNWFilterSnoopLeaseFileLoad We allocate 16 bytes for IPv4 address and 55 bytes for interface key, therefore we should read up to 15/54 bytes and let the last byte reserved for terminating null byte in sscanf. v1.2.16-11-g152e315