diff options
| author | Chris Costello <chris@FreeBSD.org> | 2002-01-06 21:16:41 +0000 |
|---|---|---|
| committer | Chris Costello <chris@FreeBSD.org> | 2002-01-06 21:16:41 +0000 |
| commit | e125c135a88a6a1995006a1c03a8ebfcd7179c7c (patch) | |
| tree | 9824d4861f319f4df52618ace7d1bfb8f9ba4139 /lib/libc/stdio/printf.3 | |
| parent | 48dac05955ac0ae4f22cbc790b98ac4111e99ad7 (diff) | |
Notes
Diffstat (limited to 'lib/libc/stdio/printf.3')
| -rw-r--r-- | lib/libc/stdio/printf.3 | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/lib/libc/stdio/printf.3 b/lib/libc/stdio/printf.3 index c16c261a91ed..6718bf48d2a0 100644 --- a/lib/libc/stdio/printf.3 +++ b/lib/libc/stdio/printf.3 @@ -688,10 +688,26 @@ char *newfmt(const char *fmt, ...) return (p); } .Ed +.Sh SECURITY CONSIDERATIONS +The +.Fn sprintf +and +.Fn vsprintf +functions are easily misused in a manner which enables malicious users +to arbitrarily change a running program's functionality through +a buffer overflow attack. +(See +the FSA +and +.Sx EXAMPLES . ) .Sh SEE ALSO .Xr printf 1 , .Xr scanf 3 , .Xr setlocale 3 +.Rs +.%T "The FreeBSD Security Architecture" +.%J "/usr/share/doc/{to be determined}" +.Re .Sh STANDARDS The .Fn fprintf , |