!
-Kees
--
Kees Cook@debian.org
Description: when a program is compiled with -D_FORTIFY_SOURCE=2, the
vsprintf_chk function is called to handle sprintf/snprintf, but it
needlessly pretruncates the destination which changes the results of
sprintf(foo
() is not marked
__wur, and that's probably what has to be fixed.
Yeah, I would tend to agree. The main glitch was that there is no
compiler option to turn off the warning. :(
Thanks for reviewing the patches!
-Kees
[1] http://lists.debian.org/debian-devel/2008/12/msg01079.html
--
Kees Cook
2 matches
Mail list logo