[AD] strcat strcpy etc.. BUG found!

[ Thread Index | Date Index | More lists.liballeg.org/allegro-developers Archives ]

To: conductors@xxxxxxxxxx
Subject: [AD] strcat strcpy etc.. BUG found!
From: aj <aj@xxxxxxxxxx>
Date: Wed, 11 Dec 2002 15:40:44 +1100

i have noticed the src of allegro has a few strcat()  and  strcpy()
shouldnt they be replaced  with  strNcat()  and/or  strNcpy()  ?


such as in  /allegro417/src/win/wddbmp.c
around lines 128-132:


case DDERR_PRIMARYSURFACEALREADYEXISTS:
         strcpy(err_str, "DDERR_PRIMARYSURFACEALREADYEXISTS");
         break;

this is a buffer overflow !


and another suspicious one...

/allegro417/src/dos/sndscape.c (lines 378):


static int get_ini_config_entry(char *entry, char *dest, FILE *fp)
{
   char str[83];
   char tokstr[33];
   char *p;

   /* make a local copy of the entry, upper-case it */
   strcpy(tokstr, entry);

****** this strcpy looks like it could overflow **********


   strupr(tokstr);

   /* rewind the file and try to find it... */
   rewind(fp);

   for (;;) {
      /* get

--------------------

aj.

Follow-Ups:
- Re: [AD] strcat strcpy etc.. BUG found!
  - From: Eric Botcazou

Messages sorted by: [ date | thread ]
Prev by Date: [AD] (v)sprintf vs (v)sNprintf
Next by Date: Re: [AD] strcat strcpy etc.. BUG found!
Previous by thread: Re: [AD] (v)sprintf vs (v)sNprintf
Next by thread: Re: [AD] strcat strcpy etc.. BUG found!

Mail converted by MHonArc 2.6.19+

http://listengine.tuxfamily.org/