Open Bug 710991 Opened 13 years ago Updated 2 years ago

Possible unsafe sprintf in AdjustWebSocketHost()

Tracking

(Not tracked)

Status:

NEW

People

(Reporter: Dolske, Unassigned)

References

Details

(Whiteboard: [pvs-studio])

Justin Dolske [:Dolske]

Reporter

Description

•

13 years ago

From http://www.viva64.com/en/a/0078/, 11th section in http://www.viva64.com/external-pictures/txt/mozilla-test.txt V541 It is dangerous to print the string 'newhost' into itself. ssltunnel.cpp 531 bool AdjustWebSocketHost(relayBuffer& buffer, connection_info_t *ci) { ... sprintf(newhost, "%s:%d", newhost, PR_ntohs(inet_addr.inet.port)); ... } I think there could be used new buffer.

Justin Dolske [:Dolske]

Reporter

Updated

•

13 years ago

Blocks: 710966

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Possible unsafe sprintf in AdjustWebSocketHost()

Categories

(Testing :: Mochitest, defect)

Tracking

(Not tracked)

People

(Reporter: Dolske, Unassigned)

References

Details

(Whiteboard: [pvs-studio])

Crash Data

Security

(public)

User Story

Description

Updated

Updated