Path to this page:
./
security/pscan,
Security C code scanner for misuse of format strings
Branch: pkgsrc-2021Q4,
Version: 1.3,
Package name: pscan-1.3,
Maintainer: pkgsrc-usersPScan is a C source code security scanner, which looks for misuse of
libc functions which use varargs and printf-style formatting
operators. In many situations these can cause security vulnerabilities
in the application if it runs with privileges (setugid, or listening
to a network socket, etc).
An example of the kind of situation pscan looks for is the following:
variable = "%s"; /* or malicious user input */
sprintf(buffer, variable); /* BAD! */
Filesize: 14.214 KB
Version history: (Expand)
- (2022-01-05) Package added to pkgsrc.se, version pscan-1.3 (created)