Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

mvprintw and printw should not be exposed #66

Open
thomcc opened this issue Jun 9, 2019 · 1 comment
Open

mvprintw and printw should not be exposed #66

thomcc opened this issue Jun 9, 2019 · 1 comment

Comments

@thomcc
Copy link

thomcc commented Jun 9, 2019
edited
Loading

These take format strings, and are trivial to cause memory safety issues which an attacker can exploit with https://www.owasp.org/index.php/Format_string_attack

If you must expose them, they should be marked as unsafe.
@thomcc thomcc mentioned this issue Jun 9, 2019
Closed
@kpcyrd
Copy link

kpcyrd commented Jun 9, 2019

Related to #54

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@thomcc @kpcyrd