From 2db3de65e89246252cd29dd02422ea32ac45355f Mon Sep 17 00:00:00 2001
From: Matthias Andree <matthias.andree@gmx.de>
Date: Thu, 24 Apr 2008 14:48:55 +0000
Subject: Require security audit for *scanf(). :-/

svn path=/branches/BRANCH_6-3/; revision=5179
---
 TODO.txt | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/TODO.txt b/TODO.txt
index 429d7e3a..f15af51d 100644
--- a/TODO.txt
+++ b/TODO.txt
@@ -2,8 +2,9 @@ soon - MUST:
 - BerliOS Bug #10972, Fetchmail refetches big messages repeatedly (SMTP listener
   issue)
 - publish SA-2007-02 after release
-- Debian Bug #475239, MIME decoder may break up words (need to quote
-  results)
+- Debian Bug #475239, MIME decoder may break up words (need to quote results)
+- Replace sscanf/fscanf by functions that do range checking (strtol/strtoul) :-/
+  See http://sourceware.org/bugzilla/show_bug.cgi?id=6453
 
 soon - SHOULD:
 - https://bugzilla.novell.com/show_bug.cgi?id=246829 - fetchmail lost some mail
-- 
cgit v1.2.3