[dovecot-cvs] dovecot configure.in,1.75,1.76
cras at procontrol.fi
cras at procontrol.fi
Sun Dec 22 00:28:09 EET 2002
Update of /home/cvs/dovecot
In directory danu:/tmp/cvs-serv10230
Modified Files:
configure.in
Log Message:
Compile with -Wformat-nonliteral now. Found a format string bug with it :(
But lucky for us, we haven't allowed %n in format strings for a few months
now and those bugs were added after that. So arbitrary code execution
vulnerabilities count is still zero :)
Index: configure.in
===================================================================
RCS file: /home/cvs/dovecot/configure.in,v
retrieving revision 1.75
retrieving revision 1.76
diff -u -d -r1.75 -r1.76
--- configure.in 18 Dec 2002 15:15:41 -0000 1.75
+++ configure.in 21 Dec 2002 22:28:07 -0000 1.76
@@ -132,7 +132,7 @@
dnl * gcc specific options
if test "x$ac_cv_prog_gcc" = "xyes"; then
# -Wcast-qual -Wcast-align -Wconversion -Wstrict-prototypes
- CFLAGS="$CFLAGS -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts"
+ CFLAGS="$CFLAGS -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat-nonliteral"
fi
dnl **
More information about the dovecot-cvs
mailing list