aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMatthias Andree <matthias.andree@gmx.de>2008-04-24 14:48:55 +0000
committerMatthias Andree <matthias.andree@gmx.de>2008-04-24 14:48:55 +0000
commit2db3de65e89246252cd29dd02422ea32ac45355f (patch)
treed1da94b92edafbbf3f594668ae6ac2bf221d5f98
parent32660ebbf0c1a9a89fc20daa0be4860c63ff174e (diff)
downloadfetchmail-2db3de65e89246252cd29dd02422ea32ac45355f.tar.gz
fetchmail-2db3de65e89246252cd29dd02422ea32ac45355f.tar.bz2
fetchmail-2db3de65e89246252cd29dd02422ea32ac45355f.zip
Require security audit for *scanf(). :-/
svn path=/branches/BRANCH_6-3/; revision=5179
-rw-r--r--TODO.txt5
1 files changed, 3 insertions, 2 deletions
diff --git a/TODO.txt b/TODO.txt
index 429d7e3a..f15af51d 100644
--- a/TODO.txt
+++ b/TODO.txt
@@ -2,8 +2,9 @@ soon - MUST:
- BerliOS Bug #10972, Fetchmail refetches big messages repeatedly (SMTP listener
issue)
- publish SA-2007-02 after release
-- Debian Bug #475239, MIME decoder may break up words (need to quote
- results)
+- Debian Bug #475239, MIME decoder may break up words (need to quote results)
+- Replace sscanf/fscanf by functions that do range checking (strtol/strtoul) :-/
+ See http://sourceware.org/bugzilla/show_bug.cgi?id=6453
soon - SHOULD:
- https://bugzilla.novell.com/show_bug.cgi?id=246829 - fetchmail lost some mail