cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH] banning "unsafe" functions

From: Ulf Härnhammar <>
Date: Wed, 6 Mar 2013 13:53:34 +0100

On Wed, Mar 6, 2013 at 1:34 PM, Daniel Stenberg <> wrote:

> As a result of the last security vulnerability we had, I'm adding new code
> to checksrc that will alert us on uses of (v)sprintf, strcat and gets in
> the code base.

The strncat() function is also easy to misuse, so you might want to
consider adding that one as well.

// Ulf

List admin:
Received on 2013-03-06