[Security][Vulnerable Function] strcat() is used without length consideration
■ Location :
service/resource-container/src/ResourceContainerImpl.cpp:1005
service/resource-container/src/ResourceContainerImpl.cpp:1014
■ Description :
strcat() function is used without consideration of string length
■ Recommended Mitigation :
Use strncat() function, considering the maximum length of the string
■ Note (Used tool or test environment)
IoTivity_1.1.0_RC1
============= Request for Defect Modification ==========
-
Please write git commit ID or gerrit link
-
=========================================================
JIRA migration meta data
- JIRA Issue ID: IOT-1052
- Reporter: jspark
- Assignee: mjun85
- Creator: jspark
- Created at: 2016-03-29T00:22:33.000-0700
- Found in Version: 1.1.0
- Fix in Version: 1.1.0
- Issue Severity: Major
- Reproducibility: Always (100%)
- Operating System: Ubuntu
- Hardware/ OEM Platform: None
-
External URL:
https://gerrit.iotivity.org/gerrit/#/c/7509/ - Bugzilla ID: None
- Product: None
- Status: Closed
- Components: Build System
- Priority: P2
- Due Date: None
-
Issue Type: Bug
END of JIRA migration meta data