Ticket #1315 (closed defect: fixed)

Opened 2 years ago

Last modified 5 weeks ago

DebCheck QA: Dangerous usage (strncpy doesn't always 0-terminate it)

Reported by: hamish Owned by: grass-dev@…
Priority: normal Milestone: 6.4.3
Component: Compiling Version: 6.4.0
Keywords: r.support Cc:
Platform: Linux CPU: Unspecified

Description

(see #1311)

  • ./raster/r.support/modcolr/modcolr.c:44 [error] - Dangerous usage of 'name' (strncpy doesn't always 0-terminate it)
  • ./raster/r.support/modhist/modhist.c:45 [error] - Dangerous usage of 'name' (strncpy doesn't always 0-terminate it)

probably it is time to revisit the safe string copy/sprintf best practice in the SUBMITTING file.

Hamish

Change History

Changed 16 months ago by hamish

fixed in devbr6 with r50186. (r.support in trunk audited, repaired in r50185)

Hamish

Changed 9 months ago by neteler

  • milestone changed from 6.4.2 to 6.4.3

Please backport if appropriate (perhaps we need to get rid of devbr6).

Changed 5 weeks ago by hamish

  • status changed from new to closed
  • resolution set to fixed

backported to relbr64 by mmetz in r52903.

closing ticket, Hamish

Note: See TracTickets for help on using tickets.