block: Prevent buffer overflow

- Specify a limit on the input string length
when using s with '%' format specifies for scanf-like functions

Change-Id: I7406565b9d834763784ff8c18bdd9cf31119536d
Signed-off-by: pr.jung <pr.jung@samsung.com>

diff --git a/src/block/block.c b/src/block/block.c
index 1ccccd6..28924d0 100644 (file)
--- a/src/block/block.c
+++ b/src/block/block.c
@@ -494,7 +494,7 @@ static int get_mmc_mount_node(char *devnode, char *node, size_t len)
        }
 
        /* Check Emulator */
-       sscanf(name, "vd%s", emul);
+       sscanf(name, "vd%31s", emul);
        if (emul[0] == '\0')
                return -EINVAL;
        for (i = 0 ; i < strlen(emul) ; i++)