Re: lib/50609: lib/libusbhid/usage.c: 3 * missing ranges in scanf

To: lib-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,dcb314%hotmail.com@localhost
Subject: Re: lib/50609: lib/libusbhid/usage.c: 3 * missing ranges in scanf
From: David Holland <dholland-bugs%netbsd.org@localhost>
Date: Tue, 31 May 2016 02:15:01 +0000 (UTC)

The following reply was made to PR lib/50609; it has been noted by GNATS.

From: David Holland <dholland-bugs%netbsd.org@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: lib/50609: lib/libusbhid/usage.c: 3 * missing ranges in scanf
Date: Tue, 31 May 2016 02:12:36 +0000

 On Sat, Jan 02, 2016 at 02:05:01PM +0000, dcb314%hotmail.com@localhost wrote:
  > [lib/libusbhid/usage.c:97]: (warning) scanf without field width limits can crash with huge input data.
  > 
  >        if (sscanf(line, " * %[^\n]", name) == 1)
  > 
  > but
  > 
  >     char line[100], name[100], *p, *n;
 
 Right, it can't output more into name[] than is in line[] so it can't
 overflow... this seems like a false positive, though the code's
 certainly untidy.
 
 -- 
 David A. Holland
 dholland%netbsd.org@localhost

Prev by Date: Re: misc/50643 (src/sys/arch/hpc/stand/hpcboot/arm/arm_console.cpp:80: sanity check after use)
Next by Date: Re: misc/50754: src/sys/arch/epoc32/stand/e32boot/ldd/epoc32.cpp:62: shallow copy or deep copy ?
Previous by Thread: lib/50609: lib/libusbhid/usage.c: 3 * missing ranges in scanf
Next by Thread: bin/50610: Some gpt tests fail on sparc
Indexes:

Home | Main Index | Thread Index | Old Index