missing bounds checks in contrib/olib
Bug #2020241 reported by
Sven M. Hallberg
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gEDA |
New
|
Undecided
|
Unassigned |
Bug Description
The OrCAD to gEDA converter in contrib/olib contains many cases of unchecked array and string accesses. The attached patch
- uses snprintf() in place of strcpy(),
- substitutes strncat() for one instance of strcat(), and
- guards some other accesses with explicit checks.
I cannot be certain that I caught everything, but this is what I found and it silences the OpenBSD linker complaining about strcpy() and strcat(). :)
To post a comment you must log in.