vulnerabilty fixed

Harri Porten porten at kde.org
Fri Nov 1 00:08:05 GMT 2002


On Thu, 31 Oct 2002, Alexander Neundorf wrote:

> +      char *logname=getenv("LOGNAME");
> +      if (strlen(logname)>60)

You may want to check for a NULL pointer here. Or use qstrlen() if you
don't want to handle this case exceptionally.

Harri.





More information about the kde-core-devel mailing list