log

age author description
Sun, 03 May 2009 23:18:28 +0000 Daniel Atallah I forgot about g_strlcpy in b14728379c16e92457492a7a4fc9a6b616e3fbe4.
Sat, 02 May 2009 19:50:13 +0000 Daniel Atallah Make sure we call atoi on a NUL-terminated string. It isn't safe to call on
Sat, 02 May 2009 19:39:45 +0000 Daniel Atallah Prevent a NUL ptr deref caused by a malformed session_id.
Sat, 02 May 2009 19:33:22 +0000 Daniel Atallah Prevent a NUL ptr deref when the passport is malformed.
Sat, 02 May 2009 19:21:11 +0000 Daniel Atallah Make sure that the chat room name is NUL-terminated when it is truncated or
Sat, 02 May 2009 17:43:14 +0000 Daniel Atallah Make sure that the buffer is large enough to fit DST.ADDR + DST.PORT. This was found in the analysis that Veracode performed on the pidgin codebase.
Thu, 30 Apr 2009 01:57:32 +0000 Daniel Atallah Use sscanf to parse to parse the Content-Length to ensure consistent parsing for the target variable type. This comes out of the Veracode analysis.