Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analys

libcdio-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analys

From:	Robert William Fuller
Subject:	Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analysis
Date:	Thu, 09 Jun 2011 17:03:17 -0400
User-agent:	Thunderbird 2.0.0.23 (X11/20100708)

Rocky Bernstein wrote:

On Thu, Jun 2, 2011 at 5:15 PM, Robert William Fuller <
address@hidden> wrote:

Hi,

Was the sprintf patch applied?



Yes.

Some of the lines, such as this one:

+      snprintf(volpath, 256, "%s/s0", globbuf.gl_pathv[i]);

Should probably be like this instead:

+      snprintf(volpath, sizeof(volpath), "%s/s0", globbuf.gl_pathv[i]);


Yes,  I made changes like this when I applied the patch.

Good deal! I forget that other people can write good code. I have seenso little of it in my professional career :-) Perhaps it is one of thereasons I like free software. People take pride in their work.

Rob

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analysis, Robert William Fuller, 2011/06/02
- Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analysis, Rocky Bernstein, 2011/06/02
  - Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analysis, Robert William Fuller <=

Prev by Date: Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analysis
Previous by thread: Re: [Libcdio-devel] [PATCH] buffer overflow and fixes from static analysis
Index(es):
- Date
- Thread