Skip to content

fix: in print_util in print_util.h#1897

Open
orbisai0security wants to merge 1 commit into
krahets:mainfrom
orbisai0security:fix-v-002-buffer-overflow-print-util
Open

fix: in print_util in print_util.h#1897
orbisai0security wants to merge 1 commit into
krahets:mainfrom
orbisai0security:fix-v-002-buffer-overflow-print-util

Conversation

@orbisai0security

@orbisai0security orbisai0security commented Apr 29, 2026

Copy link
Copy Markdown

Summary

Fix high severity security issue in codes/c/utils/print_util.h.

Vulnerability

Field Value
ID V-002
Severity HIGH
Scanner multi_agent_ai
Rule V-002
File codes/c/utils/print_util.h:68

Description: In print_util.h:68, strcpy(trunk->str, str) copies a caller-supplied string into a fixed-size buffer without any bounds checking. In n_queens.c:19, strcpy(res[*resSize][i], state[i]) copies state strings into result arrays without verifying that state[i] fits within the destination buffer. Both are classic CWE-120 (Buffer Copy Without Checking Size of Input) vulnerabilities that can overwrite adjacent stack or heap memory.

Changes

  • codes/c/utils/print_util.h

Verification

  • Build passes
  • Scanner re-scan confirms fix
  • LLM code review passed

Automated security fix by OrbisAI Security

@orbisai0security
fix: V-002 security vulnerability
1674e4e 
Automated security fix generated by Orbis Security AI
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@orbisai0security