cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: [PATCH] banning "unsafe" functions

From: Ulf H�rnhammar <ulfharn_at_gmail.com>
Date: Wed, 6 Mar 2013 13:53:34 +0100

On Wed, Mar 6, 2013 at 1:34 PM, Daniel Stenberg <daniel_at_haxx.se> wrote:

> As a result of the last security vulnerability we had, I'm adding new code
> to checksrc that will alert us on uses of (v)sprintf, strcat and gets in
> the code base.
>

The strncat() function is also easy to misuse, so you might want to
consider adding that one as well.

// Ulf
http://kulturvansterpretto.com/

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2013-03-06

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: Authentication and proxy communication"
Previous message: Daniel Stenberg: "[PATCH] banning "unsafe" functions"
In reply to: Daniel Stenberg: "[PATCH] banning "unsafe" functions"
Next in thread: Daniel Stenberg: "Re: [PATCH] banning "unsafe" functions"
Reply: Daniel Stenberg: "Re: [PATCH] banning "unsafe" functions"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]