On Saturday 09 February 2008 04:01:23 Aaron Kulkis wrote:
grep -e "strcmp(\| gets(\|strcat(" *.c *.h
And how many do you think are in the habit of doing that regularly on their source repositories? Most security vulnerabilities you see reported have been in the code for a moderately long time. There are far more problematic functions than the ones you describe, and grepping for them all is simply not done on a regular basis. But ok, how's this then buffer_size = 10 char buffer[10]; strncat(buffer, things_read_from_the_net, buffer_size); and then someone does s/buffer_size = 10/buffer_size = 1000/ grep for that Anders -- Madness takes its toll -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org