[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: mass bug filing for undefined sn?printf use

On Tue, Dec 30, 2008 at 10:06:41AM +0100, Arthur de Jong wrote:
> On Sun, 2008-12-28 at 12:02 -0600, Steve Langasek wrote:
> > I don't know whether these are also a problem in practice - but if so,
> > using sprintf(buf + strlen(buf) [...]) is definitely wrong.

> I don't know if any of my code uses such a construct but why is that
> wrong as long as [...] doesn't contain buf?

That's not the context of this discussion; we were talking about buggy code
that *did* use buf as one of the args to the format string.

Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
Ubuntu Developer                                    http://www.debian.org/
slangasek@ubuntu.com                                     vorlon@debian.org

Reply to: