Permalink
Browse files

FR-AD-001 - (v3) use strncmp() instead of memcmp() for bounded data

  • Loading branch information...
alandekok committed Jul 5, 2017
1 parent 508471a commit 41dfe9f0ca550ceb5f152ba8baf03fd6222d7119
Showing with 1 addition and 1 deletion.
  1. +1 −1 src/main/conffile.c
@@ -1199,7 +1199,7 @@ static char const *cf_expand_variables(char const *cf, int *lineno,
ERROR("%s[%d]: Reference \"%s\" type is invalid", cf, *lineno, input);
return NULL;
}
} else if (memcmp(ptr, "$ENV{", 5) == 0) {
} else if (strncmp(ptr, "$ENV{", 5) == 0) {
char *env;

ptr += 5;

0 comments on commit 41dfe9f

Please sign in to comment.