[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
strcat()->strncat() safety changes (ITS#518)
Full_Name: Nalin Dahyabhai
Version: 1.2.10
OS: Linux 2.2.14
URL: http://people.redhat.com/nalin/patches/openldap-1.2.9-strings.patch
Submission from: (NULL) (207.175.42.207)
While fixing a misconfigured set of defaults for a security errata, we took a
look
at some of the string-handling code. A number of locations in the OpenLDAP
sources
use strcat() on fixed-size buffers. We changed the more obvious places where
this
was happening to use strncat() instead. Please feel free to review the changes
and
include them in subsequent releases if you find them useful.