pkgsrc/security/pscan/PLIST, branch pkgsrc

pkgsrc/security/pscan/PLIST, branch pkgsrc_2008Q2 [no description] https://git.osdyson.ru/mirror/pkgsrc/atom?h=pkgsrc_2008Q2 2002-08-06T01:36:59Z PScan is a C source code security scanner, which looks for misuse of 2002-08-06T01:36:59Z cjs cjs 2002-08-06T01:36:59Z urn:sha1:94250aa115e66d1cf5ca53ff6ee480b369ae7050 libc functions which use varargs and printf-style formatting operators. In many situations these can cause security vulnerabilities in the application if it runs with privileges (setugid, or listening to a network socket, etc). An example of the kind of situation pscan looks for is the following: variable = "%s"; /* or malicious user input */ sprintf(buffer, variable); /* BAD! */ WWW: http://www.striker.ottawa.on.ca/~aland/pscan/