Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Buffer overflow hits from Fortify scan of Redis 3.2.12 #5762
Hi, we have an organization requirement to run Fortify against all the code of our service including 3rd party software (our service uses Redis 3.2.12).
Fortify reports a number of issues mainly around Buffer overflow, many of them i'm able to resolve as false positives but there is a remaining list that gets pretty deep in the Redis code where i'm not able to easily identify if a real issue or not.
Here is a list;
Could a Redis developer take a look and identify if these are false or real issues (and if real a way to mitigate them)?