Re: mass bug filing for undefined sn?printf use
On Tue, Dec 30, 2008 at 10:06:41AM +0100, Arthur de Jong wrote:
> On Sun, 2008-12-28 at 12:02 -0600, Steve Langasek wrote:
> > I don't know whether these are also a problem in practice - but if so,
> > using sprintf(buf + strlen(buf) [...]) is definitely wrong.
> I don't know if any of my code uses such a construct but why is that
> wrong as long as [...] doesn't contain buf?
That's not the context of this discussion; we were talking about buggy code
that *did* use buf as one of the args to the format string.
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developer http://www.debian.org/