Current-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Possible unsafe use of strncat in sbin/sysctl/sysctl.c

To: current-users%netbsd.org@localhost
Subject: Re: Possible unsafe use of strncat in sbin/sysctl/sysctl.c
From: David Laight <david%l8s.co.uk@localhost>
Date: Wed, 24 Aug 2011 11:28:16 +0100

On Tue, Aug 23, 2011 at 11:23:55PM +0200, Jimmy Johansson wrote:
> Hi,
> 
> I propose the following patch, as I think this is what the developer
> intended anyway:

I'd try to find a way of avoiding repeated strlcat() - to avoid the
repeated (effective) strlen() calls.

But yes, strncat() is especially broken.

        David

-- 
David Laight: david%l8s.co.uk@localhost

Follow-Ups:
- Re: Possible unsafe use of strncat in sbin/sysctl/sysctl.c
  - From: Jimmy Johansson

References:
- Possible unsafe use of strncat in sbin/sysctl/sysctl.c
  - From: Jimmy Johansson

Prev by Date: Re: Possible unsafe use of strncat in sbin/sysctl/sysctl.c
Next by Date: Re: C compiler cannot create executables
Previous by Thread: Re: Possible unsafe use of strncat in sbin/sysctl/sysctl.c
Next by Thread: Re: Possible unsafe use of strncat in sbin/sysctl/sysctl.c
Indexes:

Home | Main Index | Thread Index | Old Index