curl-library
Re: [PATCH] banning "unsafe" functions
From: Ulf Härnhammar <ulfharn_at_gmail.com>
Date: Wed, 6 Mar 2013 13:53:34 +0100
Date: Wed, 6 Mar 2013 13:53:34 +0100
On Wed, Mar 6, 2013 at 1:34 PM, Daniel Stenberg <daniel_at_haxx.se> wrote:
> As a result of the last security vulnerability we had, I'm adding new code
> to checksrc that will alert us on uses of (v)sprintf, strcat and gets in
> the code base.
>
The strncat() function is also easy to misuse, so you might want to
consider adding that one as well.
// Ulf
http://kulturvansterpretto.com/
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2013-03-06