[Libreoffice-bugs] [Bug 117525] New: No checks for buffer()

bugzilla-daemon Wed, 09 May 2018 10:33:18 -0700

https://bugs.documentfoundation.org/show_bug.cgi?id=117525


            Bug ID: 117525
           Summary: No checks for buffer()
           Product: LibreOffice
           Version: unspecified
          Hardware: All
                OS: All
            Status: UNCONFIRMED
          Severity: normal
          Priority: medium
         Component: LibreOffice
          Assignee: [email protected]
          Reporter: [email protected]

Description:
Hi Team, 

https://github.com/LibreOffice/core/blob/master/cppuhelper/source/findsofficepath.c#L178

i.e
strcpy( file, dir );


Steps to Reproduce:
https://github.com/LibreOffice/core/blob/master/cppuhelper/source/findsofficepath.c#L178

Actual Results:  
Does not check for buffer overflows when copying to destination such as
[MS-banned](CWE-120). 

Expected Results:
Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).


Reproducible: Always


User Profile Reset: No



Additional Info:


User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:59.0) Gecko/20100101
Firefox/59.0

-- 
You are receiving this mail because:
You are the assignee for the bug.

_______________________________________________
Libreoffice-bugs mailing list
[email protected]
https://lists.freedesktop.org/mailman/listinfo/libreoffice-bugs

[Libreoffice-bugs] [Bug 117525] New: No checks for buffer()

Reply via email to