Project

General

Profile

Actions

Feature #213

closed

Buffer overflows vermeiden

Added by Jörg Riesmeier over 21 years ago. Updated 16 days ago.

Status:
Closed
Priority:
Normal
Category:
-
Target version:
-
Start date:
Due date:
% Done:

100%

Estimated time:
Module:
all
Operating System:
Compiler:

Description

Z.B. snprintf() statt sprintf() verwenden, falls vorhanden. Dies sollte ab C99
der Fall sein.

Ebenso OFStandard::strlcpy() und OFStandard::strlcat() statt strcpy() und
strcat(), oder noch besser OFString verwenden (siehe auch Eintrag vom
2002-04-11).

Es gibt auch einige Tools, die zur automatischen Ueberpruefung des Quelltextes
eingesetzt werden koennen, z.B. http://www.dwheeler.com/flawfinder/.

Actions #1

Updated by Marco Eichelberg about 7 years ago

  • Description updated (diff)
  • % Done changed from 0 to 50

strcpy() and strcat() have been replaced by OFStandard::strlcpy() and OFStandard::strlcat() wherever possible in the public and private modules.

Actions #2

Updated by Marco Eichelberg 16 days ago

  • Status changed from New to Closed
  • Assignee set to Marco Eichelberg
  • % Done changed from 50 to 100

sprintf() has meanwhile been replaced by OFStandard::snprintf() wherever possible in the public and private modules.

Actions

Also available in: Atom PDF