stdcxx-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Martin Sebor (JIRA)" <j...@apache.org>
Subject [jira] Created: (STDCXX-1013) [HP aCC 6.16] +wsecurity warnings in setlocale.cpp
Date Sat, 06 Sep 2008 19:55:44 GMT
[HP aCC 6.16] +wsecurity warnings in setlocale.cpp
--------------------------------------------------

                 Key: STDCXX-1013
                 URL: https://issues.apache.org/jira/browse/STDCXX-1013
             Project: C++ Standard Library
          Issue Type: Bug
          Components: 22. Localization
    Affects Versions: 4.2.1
         Environment: HP aCC 6.16 with [+wsecurity|http://docs.hp.com/en/10946/options.htm#opt+wsecurity]
            Reporter: Martin Sebor
            Assignee: Martin Sebor
            Priority: Minor
             Fix For: 4.2.2


Compiling the library with HP aCC 6.16 with the [+wsecurity|http://docs.hp.com/en/10946/options.htm#opt+wsecurity]
option emits the following warnings:

{noformat}
aCC -c -mt -I/amd/devco/sebor/stdcxx-4.2.x/include -I/build/sebor/stdcxx-4.2.x-aCC-6.16-12D-ipo/include
\
    -AA  +O2  +DD64 -ipo +tls=static +w +wsecurity +wendian +W392,655,684,818,819,849 \
    +W2193,2236,2261,2340,2401,2487 +W4227,4229,4231,4235,4237,4249 \
    +W4255,4272,4284,4285,4286,4296,4297 +W3348  +Z \
    /amd/devco/sebor/stdcxx-4.2.x/src/setlocale.cpp
"/amd/devco/sebor/stdcxx-4.2.x/src/setlocale.cpp", line 168, procedure __rw::__rw_locale_name:
warning #20119-D: 
          (SECURITY) Unsafe API 'strcpy' is used. Buffer overflow is not
          checked when copying to target buffer. Consider using 'strncpy'.

"/amd/devco/sebor/stdcxx-4.2.x/src/setlocale.cpp", line 182, procedure __rw::__rw_locale_name:
warning #20119-D: 
          (SECURITY) Unsafe API 'strcpy' is used. Buffer overflow is not
          checked when copying to target buffer. Consider using 'strncpy'.

"/amd/devco/sebor/stdcxx-4.2.x/src/setlocale.cpp", line 193, procedure __rw::__rw_locale_name:
warning #20119-D: 
          (SECURITY) Unsafe API 'strcpy' is used. Buffer overflow is not
          checked when copying to target buffer. Consider using 'strncpy'.
{noformat}

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message