generic-library/curl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

- Bill Egert pointed out (http://curl.haxx.se/bug/view.cgi?id=2671602) that

Browse Source 
curl didn't use sprintf() in a way that is documented to work in POSIX but
  since we use our own printf() code (from libcurl) that shouldn't be a
  problem. Nonetheless I modified the code to not rely on such particular
  features and to not cause further raised eyebrowse with no good reason.
This commit is contained in:
Daniel Stenberg
2009-03-08 22:42:50 +00:00
parent 983a539503
commit 9274d31690
3 changed files with 13 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
CHANGES
View File

@@ -6,6 +6,13 @@
Changelog
Daniel Stenberg (8 Mar 2009)
- Bill Egert pointed out (http://curl.haxx.se/bug/view.cgi?id=2671602) that
curl didn't use sprintf() in a way that is documented to work in POSIX but
since we use our own printf() code (from libcurl) that shouldn't be a
problem. Nonetheless I modified the code to not rely on such particular
features and to not cause further raised eyebrowse with no good reason.
Daniel Fandrich (5 Mar 2009)
- Expanded the security section of the libcurl-tutorial man page to cover
more issues for authors to consider when writing robust libcurl-using