Domingo Alvarez Duarte wrote:
> I'm reading the FLTK manual and following the tutorial on writing a simple
> text editor and I saw that it's using strcpy to copy user supplied input to
> static strings, that's a bad idea and although the example is supplied in a
> simplified way to allow new users start with it FLTK I think that's a god
> idea to warning or not to use strcpy on those contexts, using strncpy will be
> safer.
>
> I didn't looked at other examples yet or even the source code of FLTK to see
> if strcpy is used on places that can lead to overflows.
>
> Thanks in advance for any attention to this !
Agreed, in that case there should definitely be a strncpy() where the
sizeof(e->search) should be taken into account..
To properly report it, make an STR for this and one of us will address
it.
_______________________________________________
fltk-bugs mailing list
[email protected]
http://lists.easysw.com/mailman/listinfo/fltk-bugs
