8 Feb
2008
8 Feb
'08
19:53
Wolfgang Woehl wrote:
Aaron Kulkis:
Other than *very* *old*, uncorrected code with buffer-overflow vulnerabilities, due to calls to strcat(3) instead of strncat(3), and similar pitfalls which are now very well understood since the first use in th 1987 Morris Worm, you have to provide some hard documentation (i.e. code sections) to make your point here.
Aaron, buffer-overflows were a problem because applications can do pretty much anything.
No, they can't. Programs can pretty much do what the object code files tell them to do. And nothing more. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org