Mailinglist Archive: opensuse-bugs (8045 mails)

[bugzilla_noreply@xxxxxxxxxx]

https://bugzilla.novell.com/show_bug.cgi?id=230271

           Summary: gftp potential buffer overrun
           Product: openSUSE 10.3
           Version: unspecified
          Platform: Other
        OS/Version: Other
            Status: NEW
          Severity: Normal
          Priority: P5 - None
         Component: GNOME
        AssignedTo: bnc-team-gnome@xxxxxxxxxxxxxxxxxxxxxx
        ReportedBy: maw@xxxxxxxxxx
         QAContact: qa@xxxxxxx


I got a mail about gftp failing to build in STABLE which ended with the
following:

ERROR: Program might be overflowing a buffer in strncat. Common mistake:
ERROR: BAD: strncat(buffer,charptr,sizeof(buffer)) is wrong, it takes the left
over size as 3rd argument
ERROR: GOOD: strncat(buffer,charptr,sizeof(buffer)-strlen(buffer)-1)
ERROR: Please investigate and fix.
Problematic file(s) and their linenumbers:
  gftpui.c: 852

I've fixed it in STABLE.  Should the change be applied to SLE too?


-- 
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.