Re: bin/45660: Overlapping buffer in catman.c.

To: gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,henning.petersen%t-online.de@localhost
Subject: Re: bin/45660: Overlapping buffer in catman.c.
From: Alan Barrett <apb%cequrux.com@localhost>
Date: Tue, 27 Dec 2011 12:50:05 +0000 (UTC)

The following reply was made to PR bin/45660; it has been noted by GNATS.

From: Alan Barrett <apb%cequrux.com@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: bin/45660: Overlapping buffer in catman.c.
Date: Tue, 27 Dec 2011 14:46:13 +0200

 On Sun, 27 Nov 2011, Christian Biere wrote:
 > I assume the missing constant format string argument at the first
 > snprintf() in makecat() is actually a bug. I'm sure the compiler
 > is warning about this.

 The buildcmd argument to the makecat() function in catman.c is 
 taken from a "_build" line in man.conf, in which "%s" stands for 
 the name of the file to be formatted.  Using this string as a 
 format argument to sprintf is unsafe (there may be escapes other 
 than %s, or more than one %s), but it's less wrong than treating 
 it as a constant string and not expanding any %s at all.

 --apb (Alan Barrett)

Prev by Date: Re: kern/45746: UVM_KMF_COLORMATCH/UVM_FLAG_COLORMATCH problems
Next by Date: Re: kern/45361 (Consistent kernel panic when building qemu in amd64)
Previous by Thread: Re: bin/45660: Overlapping buffer in catman.c.
Next by Thread: bin/45661: Overlapping buffer in route.c.
Indexes:

Home | Main Index | Thread Index | Old Index