id summary reporter owner description type status priority milestone component version severity resolution keywords cc 6209 Convert all CPLsprintf -> CPLsnprintf Kurt Schwehr Kurt Schwehr "Using INT_MAX for a byte limited snprintf defeats the purpose of snprintf and allows for buffer overflows. Convert all CPLsprintf -> CPLsnprintf with the proper byte counts. {{{#!c++ int CPLsprintf(char *str, const char* fmt, ...) { va_list args; va_start( args, fmt ); // TODO: Danger! Using INT_MAX allows for buffer overflows. int ret = CPLvsnprintf( str, INT_MAX, fmt, args ); va_end( args ); return ret; } }}} {{{ find . -name \*.cpp | xargs grep CPLsprintf | wc -l 144 }}}" defect closed normal default svn-trunk normal fixed security bufferoverflow