Skip to content

[Backport v3.2-branch] net: lib: ftp_client: Fix vulnerabilities#27287

Merged
carlescufi merged 1 commit intov3.2-branchfrom
backport-27159-to-v3.2-branch
Feb 27, 2026
Merged

[Backport v3.2-branch] net: lib: ftp_client: Fix vulnerabilities#27287
carlescufi merged 1 commit intov3.2-branchfrom
backport-27159-to-v3.2-branch

Conversation

@NordicBuilder
Copy link
Contributor

@NordicBuilder NordicBuilder commented Feb 27, 2026

Backport 65b948d from #27159.
@MarkusLassila @github-actions
net: lib: ftp_client: Fix vulnerabilities
cc5f27c 
- sprintf -> snprintf (boundary checks).
- Improve pasv_msg validation.
- Add input parameter validation.
- Fix race condition with PASV response being
  overwritten.

Signed-off-by: Markus Lassila <markus.lassila@nordicsemi.no>
(cherry picked from commit 65b948d)
@NordicBuilder NordicBuilder requested a review from a team as a code owner February 27, 2026 09:08
@NordicBuilder NordicBuilder added Backport changelog-entry-required Update changelog before merge. Remove label if entry is not needed or already added. labels Feb 27, 2026
@NordicBuilder NordicBuilder requested a review from a team February 27, 2026 09:09
@NordicBuilder
Copy link
Contributor Author

NordicBuilder commented Feb 27, 2026
edited
Loading

CI Information

To view the history of this post, click the 'edited' button above
Build number: 1

Inputs:

Sources:

sdk-nrf: PR head: cc5f27c5508049127f79ed14ce014342971dbbba

more details

sdk-nrf:

PR head: cc5f27c5508049127f79ed14ce014342971dbbba
merge base: bfaf09976c11b0b04d3c21b17202481f714e3e28
target head (v3.2-branch): bfaf09976c11b0b04d3c21b17202481f714e3e28
Diff

Github labels

Enabled Name Description
ci-disabled Disable the ci execution
ci-all-test Run all of ci, no test spec filtering will be done
ci-force-downstream Force execution of downstream even if twister fails
ci-run-twister Force run twister
ci-run-zephyr-twister Force run zephyr twister
List of changed files detected by CI (1) 
subsys
│  ├── net
│  │  ├── lib
│  │  │  ├── ftp_client
│  │  │  │  ├── src
│  │  │  │  │  │ ftp_client.c

Outputs:

Toolchain

Version: 2ac5840438
Build docker image: docker-dtr.nordicsemi.no/sw-production/ncs-build:2ac5840438_5ea73affbf

Test Spec & Results: ✅ Success; ❌ Failure; 🟠 Queued; 🟡 Progress; ◻�� Skipped; ⚠️ Quarantine

  • ◻️ Toolchain - Skipped: existing toolchain is used
  • ✅ Build twister
    • sdk-nrf test count: 389
  • ✅ Integration tests
Disabled integration tests
    • test-fw-nrfconnect-nrf_lrcs_mosh
    • test-fw-nrfconnect-nrf_lrcs_positioning
    • desktop52_verification
    • test_ble_nrf_config
    • test-fw-nrfconnect-apps
    • test-fw-nrfconnect-ble_mesh
    • test-fw-nrfconnect-ble_samples
    • test-fw-nrfconnect-chip
    • test-fw-nrfconnect-fem
    • test-fw-nrfconnect-nfc
    • test-fw-nrfconnect-nrf-iot_cloud
    • test-fw-nrfconnect-nrf-iot_libmodem-nrf
    • test-fw-nrfconnect-nrf-iot_lwm2m
    • test-fw-nrfconnect-nrf-iot_samples
    • test-fw-nrfconnect-nrf-iot_thingy91
    • test-fw-nrfconnect-nrf-iot_zephyr_lwm2m
    • test-fw-nrfconnect-nrf_crypto
    • test-fw-nrfconnect-ps-main
    • test-fw-nrfconnect-rpc
    • test-fw-nrfconnect-rs
    • test-fw-nrfconnect-tfm
    • test-fw-nrfconnect-thread-main
    • test-low-level
    • test-sdk-audio
    • test-sdk-dfu
    • test-sdk-find-my
    • test-sdk-mcuboot
    • test-sdk-wifi
    • test-secdom-samples-public

Note: This message is automatically posted and updated by the CI
@carlescufi carlescufi merged commit 76293ea into v3.2-branch Feb 27, 2026
21 checks passed
@carlescufi carlescufi deleted the backport-27159-to-v3.2-branch branch February 27, 2026 12:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Backport changelog-entry-required Update changelog before merge. Remove label if entry is not needed or already added.

3 participants

@NordicBuilder @carlescufi @MarkusLassila