On Friday, 26. August 2011 03:45:29 Philip Craig wrote: > > Simple PoC can be found here: > > http://marc.info/?l=gimp-developer&m=129567990905823&w=2 > > This looks like a bug in scanf, I suggest fixing it there. I don't know > why the cppcheck authors decided that all the users needed fixing. > > ... > > Working around the problem in every program that uses scanf is not the > right thing to do. Right. I'll contact the glibc maintainers this week, it looks like an issue with scanf(). One guy from cppcheck tried the same scanf() code on another platform and there was no crash detectable. Best regards, Thomas -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
