id,summary,reporter,owner,description,type,status,priority,milestone,component,version,severity,resolution,keywords,cc 6209,Convert all CPLsprintf -> CPLsnprintf,Kurt Schwehr,Kurt Schwehr,"Using INT_MAX for a byte limited snprintf defeats the purpose of snprintf and allows for buffer overflows. Convert all CPLsprintf -> CPLsnprintf with the proper byte counts. {{{#!c++ int CPLsprintf(char *str, const char* fmt, ...) { va_list args; va_start( args, fmt ); // TODO: Danger! Using INT_MAX allows for buffer overflows. int ret = CPLvsnprintf( str, INT_MAX, fmt, args ); va_end( args ); return ret; } }}} {{{ find . -name \*.cpp | xargs grep CPLsprintf | wc -l 144 }}}",defect,closed,normal,,default,svn-trunk,normal,fixed,security bufferoverflow,