Opened 16 years ago
Closed 16 years ago
#4888 closed defect (fixed)
UDFFindFile uses strcat with a source string that can be larger then the destination string
Reported by: | Owned by: | Isaac Richards | |
---|---|---|---|
Priority: | minor | Milestone: | unknown |
Component: | mythtv | Version: | head |
Severity: | low | Keywords: | |
Cc: | Ticket locked: | no |
Description
The function UDFFindFile() uses strcat:
strcat( tokenline, filename );
While filename can have any length, overrunning tokenline.
Attachments (1)
Change History (2)
Changed 16 years ago by
Attachment: | libs_libmythdvdnav_dvd_udf.c-prevent-string-overflow.patch added |
---|
Note: See
TracTickets for help on using
tickets.
Switches the function to use strncat instead of strcat to prevent string overflow.