[Date Prev][Date Next] [Chronological] [Thread] [Top]

strcat()->strncat() safety changes (ITS#518)

Full_Name: Nalin Dahyabhai
Version: 1.2.10
OS: Linux 2.2.14
URL: http://people.redhat.com/nalin/patches/openldap-1.2.9-strings.patch
Submission from: (NULL) (

While fixing a misconfigured set of defaults for a security errata, we took a
at some of the string-handling code.  A number of locations in the OpenLDAP
use strcat() on fixed-size buffers.  We changed the more obvious places where
was happening to use strncat() instead.  Please feel free to review the changes
include them in subsequent releases if you find them useful.