Re: [dev][sbase] Readlink doesn't null-terminate buf

Tue, 09 Jul 2013 14:49:37 -0700 

> The patch introduces buffer overflow. sizeof(buf)-1 should be passed
> to readlink().

Furthermore, buf should be made (PATH_MAX + 1) bytes in size, so that
valid paths don't get truncated.

Reply via email to