On Thu, 6 Mar 2014 15:15:49 -0800, Jens Alfke said:
>I remember the “Month Of Apple Bugs”** that a hacker group ran in 2007,
>where they published a new app or OS security vulnerability every day
>for month. A lot of them were caused by format-string vulnerabilities.
>Soon thereafter the compiler team at Apple added that format-string
>security warning :)
Though it still doesn't work for NSPredicate APIs:, all these years later, ex:
-----------------------
#import <Foundation/Foundation.h>
int main (void)
{
NSPredicate* predicate = [NSPredicate predicateWithFormat:@"foo == %d"];
return !!predicate;
}
-----------------------
"clang -Weverything -fsyntax-only ~/test.m" gives nothing!
<rdar://10699748> Dupes welcome. :)
Cheers,
--
____________________________________________________________
Sean McBride, B. Eng [email protected]
Rogue Research www.rogue-research.com
Mac Software Developer Montréal, Québec, Canada
_______________________________________________
Cocoa-dev mailing list ([email protected])
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com
This email sent to [email protected]
