Hi Eric, > Another glibc printf bug has been exposed and fixed: > > http://sourceware.org/bugzilla/show_bug.cgi?id=12445 > > Should our *printf-posix modules be testing for and working around this > issue?
Based on the expected frequency of the bug - it affects only format strings with more than 31 format directives -, I would say no. But the effect of writing wrong data to the stack could be abused for security relevant exploits, so I would say yes. Bruno -- In memoriam Mario Manuel de la Peña <http://www.directorio.org/mario.htm>
