Re: PROPOSAL: dot-proc interface [was: /proc stuff]

From: George Greer (greerga@m-l.org)
Date: Tue Nov 06 2001 - 20:06:48 EST

Next message: Ricky Beam: "Re: PROPOSAL: /proc standards (was dot-proc interface [was: /proc"
Previous message: Jason Collins: "New Cerberus (CTCS) test system release"
In reply to: dank@trellisinc.com: "Re: PROPOSAL: dot-proc interface [was: /proc stuff]"
Next in thread: Jonathan Lundell: "Re: PROPOSAL: dot-proc interface [was: /proc stuff]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 6 Nov 2001 dank@trellisinc.com wrote:

>In article <20011105155955.A16505@codepoet.org> Erik Anderson wrote:
>> Come now, it really isn't that difficult:
>
>> char name[80];
>> if (sscanf(line, "%4u %4u %llu %s", &major, &minor, &size, name) == 4)
>
>if it's so easy to do, why do you have a great big buffer overflow here?

Because he forgot about "%80s"? But if he forgot that he may accidently
use strcpy, strcat, and gets, so...

Or maybe it was just an exercise for the reader?

-- George Greer, greerga@m-l.org http://www.m-l.org/~greerga/

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Ricky Beam: "Re: PROPOSAL: /proc standards (was dot-proc interface [was: /proc"
Previous message: Jason Collins: "New Cerberus (CTCS) test system release"
In reply to: dank@trellisinc.com: "Re: PROPOSAL: dot-proc interface [was: /proc stuff]"
Next in thread: Jonathan Lundell: "Re: PROPOSAL: dot-proc interface [was: /proc stuff]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Nov 07 2001 - 21:00:33 EST