Inspired by Ulf's bug report in simple-proxy which was DSA-786
I had a look at a couple more proxy servers.
This resulted in a bug report against anon-proxy, almost identical
to that in simple-proxy:
- syslog(type,oMsg.m_strMsgBuff);
+ syslog(type,"%s",oMsg.m_strMsgBuff);
I'm thinking these are the most simple bugs to spot, even if
pscan fails to work properly at times (still haven't sorted out
#311251).
It would be nice to scan all binaries using "syslog", but I
can't think of an obvious way to do it - short of grepping for
the "openlog" / "syslog".
It's a shame that syslog isn't in a shared library as this would
allow all the packages using it to be listed.
*ugh*
Anyway .. I figured a status mail wasn't a bad idea, if only
to show that I'm still doing "stuff".
Steve
--Received on Tue Aug 30 2005 - 21:14:45 BST