Re: buffer overflow in /bin/gzip?
On Tue, Nov 20, 2001 at 11:33:20PM +0100, Anders Gj?re wrote:
> in gzip.c
> the line:
> should maybe be replaced with:
> strncpy(nbuf, dir,sizeof(nbuf));
The call to strcpy() may be replaced with a call to strncpy(), but there is
no problem in the call to strcpy(). Look at the line preceding the call to
strcpy(), it ensures that nbuf will not be overflowed.
Regards, Yotam Rubin
> anders gj?re
> system engineer
> +47 414 22 934
> To UNSUBSCRIBE, email to email@example.com
> with a subject of "unsubscribe". Trouble? Contact firstname.lastname@example.org