certmonger

#20 store-gen.c:244: Buffer out of bounds ?
Closed: Fixed Opened by dcb.

Closed: Fixed
Reopen Issue

I just ran the static analyser "cppcheck" over the source code of certmonger-0.67
It said

[store-gen.c:244]: (error) Buffer is accessed out of bounds.

Source code is

cm_store_timestamp_from_time_for_display(time_t when, char timestamp[21])
{
struct tm tm;
if ((when != 0) && (gmtime_r(&when, &tm) == &tm)) {
sprintf(timestamp, "%04d-%02d-%02d %02d:%02d:%02d UTC",
tm.tm_year + 1900, tm.tm_mon + 1, tm.tm_mday,
tm.tm_hour, tm.tm_min, tm.tm_sec);
} else {
strcpy(timestamp, "19700101000000");

I count 25 chars written into timestamp by the first call
to sprintf. Suggest increase 21 in timestamp declaration to 25
and adjust the caller of cm_store_timestamp_from_time_for_display
to suit.

Also, the text in the call to strcpy doesn't match the format
in the call to sprintf.

Thanks for catching this. The fix should land in git shortly and in the next release.

This should be fixed in 0.68 and later. Thanks!

Metadata Update from @nalin:
- Issue assigned to nalin
Metadata
None
None
None
Normal
defect
Static archive. pagure.io was sunset in 2026; this is a read-only snapshot.
Red Hat Logo

Fedora is sponsored by Red Hat. Learn more about the relationship between Red Hat and Fedora »

© Red Hat, Inc. and others.