On Thu, Mar 13, 2014, Moritz Barsnick wrote: > "Release early, release often." ;-) > (Less than six months this time, instead of three years.)
Thanks to a buffer overflow... It would have been much better if that didn't happen. Hmm, maybe it's finally time to get rid of strcat(), strcpy(), etc? handler.o(.text+0xada): In function `enriched_flush': handler.c:605: warning: wcscat() is almost always misused, please use wcslcat() ./intl/libintl.a(dcigettext.o)(.text+0x744): In function `dcigettext__': dcigettext.c:529: warning: stpcpy() is dangerous GNU crap; don't use it init.o(.text+0x14dc): In function `mutt_extract_token': init.c:277: warning: strcpy() is almost always misused, please use strlcpy() browser.o(.text+0x2262): In function `_mutt_select_file': browser.c:754: warning: strcat() is almost always misused, please use strlcat() curs_lib.o(.text+0x1f37): In function `_mutt_enter_fname': curs_lib.c:591: warning: sprintf() is often misused, please use snprintf() muttlib.o(.text+0x38f8): In function `mutt_adv_mktemp': muttlib.c:78: warning: mktemp() possibly used unsafely; consider using mkstemp()
