diff options
| author | Mark Adler <madler@alumni.caltech.edu> | 2011-09-09 23:22:10 -0700 |
|---|---|---|
| committer | Mark Adler <madler@alumni.caltech.edu> | 2011-09-09 23:22:10 -0700 |
| commit | 8e34b3a8024c028dd9fd21d70525fc6d215efde5 (patch) | |
| tree | 896a32f54abdf42ae3c1bb3c5d5627668b481ce4 /FAQ | |
| parent | 13a294f044ef0a89b2dcbfbb5d4d4c792673348e (diff) | |
| download | zlib-8e34b3a8024c028dd9fd21d70525fc6d215efde5.tar.gz zlib-8e34b3a8024c028dd9fd21d70525fc6d215efde5.tar.bz2 zlib-8e34b3a8024c028dd9fd21d70525fc6d215efde5.zip | |
zlib 1.2.0.2v1.2.0.2
Diffstat (limited to 'FAQ')
| -rw-r--r-- | FAQ | 3 |
1 files changed, 2 insertions, 1 deletions
| @@ -228,7 +228,8 @@ The lastest zlib FAQ is at http://www.gzip.org/zlib/zlib_faq.html | |||
| 228 | hand, if zlib is compiled to use snprintf() or vsnprintf(), which should | 228 | hand, if zlib is compiled to use snprintf() or vsnprintf(), which should |
| 229 | normally be the case, then there is no vulnerability. The ./configure | 229 | normally be the case, then there is no vulnerability. The ./configure |
| 230 | script will display warnings if an insecure variation of sprintf() will | 230 | script will display warnings if an insecure variation of sprintf() will |
| 231 | be used by gzprintf(). | 231 | be used by gzprintf(). Also the zlibCompileFlags() functions will return |
| 232 | information on what variant of sprintf() is used by gzprintf(). | ||
| 232 | 233 | ||
| 233 | If you don't have snprintf() or vsnprintf() and would like one, you can | 234 | If you don't have snprintf() or vsnprintf() and would like one, you can |
| 234 | find a portable implementation here: | 235 | find a portable implementation here: |