NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: bin/52432: /etc/dumpdates format egregious

To: gnats-bugs%NetBSD.org@localhost, gnats-admin%netbsd.org@localhost, netbsd-bugs%netbsd.org@localhost
Subject: Re: bin/52432: /etc/dumpdates format egregious
From: christos%zoulas.com@localhost (Christos Zoulas)
Date: Wed, 26 Jul 2017 22:55:37 -0400

On Jul 26,  9:30pm, greywolf%starwolf.com@localhost (greywolf%starwolf.com@localhost) wrote:
-- Subject: bin/52432: /etc/dumpdates format egregious

Because %s can cause a buffer overflow. The better solution is to stop
using scanf... This started with:
https://gnats.netbsd.org/cgi-bin/query-pr-single.pl?number=50434
Unfortunately DUMP{IN,OUT}FMT is the "api".

christos

Follow-Ups:
- Re: bin/52432: /etc/dumpdates format egregious
  - From: Robert Elz

References:
- bin/52432: /etc/dumpdates format egregious
  - From: greywolf

Prev by Date: PR/52409 CVS commit: src/sys/external/bsd/drm2/pci
Next by Date: Re: bin/52432: /etc/dumpdates format egregious
Previous by Thread: bin/52432: /etc/dumpdates format egregious
Next by Thread: Re: bin/52432: /etc/dumpdates format egregious
Indexes:

Home | Main Index | Thread Index | Old Index