Ramsay Jones <ramsay@xxxxxxxxxxxxxxxxxxx> writes: > Subject: [PATCH] path.c: Fix a static buffer overwrite bug by avoiding mkpath() > > In order to fix the bug, we introduce a new variation of the mkpath() > function, mkpathdup(), which avoids the use of the internal static > buffers. Shouldn't we aim a bit higher to also avoid the use of bounded buffer? Instead of returning bad_path, retry with lengthened buffer until we succeed, or something. Better yet, internally use strbuf_vaddf(). -- To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html