diff options
| author | Chris Michael <cp.michael@samsung.com> | 2018-05-10 10:47:37 -0400 |
|---|---|---|
| committer | Chris Michael <cp.michael@samsung.com> | 2018-05-10 11:10:14 -0400 |
| commit | 936e4acd75d009a56446b46bd4328b6c92fe6ce5 (patch) | |
| tree | 84686658f3450bbefdf7d85e5223f149872f5db2 | |
| parent | 6c25b38a1c1d4a2df66a880a4093876f30c5829b (diff) | |
| download | efl-936e4acd75d009a56446b46bd4328b6c92fe6ce5.tar.gz | |
edje: Remove use of insecure strcat function
As per the sonar report, the usage of strcat is insecure. This patch
modifies the code slightly to use the more secure strncat function in
order to avoid potential buffer overflow vulnerability.
@fix
Differential Revision: https://phab.enlightenment.org/D6150
| -rw-r--r-- | src/bin/edje/edje_cc_handlers.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/bin/edje/edje_cc_handlers.c b/src/bin/edje/edje_cc_handlers.c index 6d987edb8f..4d0a319943 100644 --- a/src/bin/edje/edje_cc_handlers.c +++ b/src/bin/edje/edje_cc_handlers.c @@ -11341,7 +11341,7 @@ st_collections_group_parts_part_description_text_text(void) else { str = realloc(str, strlen(str) + strlen(s) + 1); - strcat(str, s); + strncat(str, s, strlen(str) + strlen(s) + 1); free(s); } } |