Closed xvitaly closed 6 years ago
Some of them are critical and can cause vulnerabilities.
Especially unused variables, unknown pragmas, and sugned-unsigned comparisons.
Especially unused variables, unknown pragmas, and sugned-unsigned comparisons.
This one:
/builddir/build/BUILD/tdesktop-1.0.37/Telegram/ThirdParty/libtgvoip/logging.cpp:42:6: warning: '%s' directive output may be truncated writing up to 64 bytes into a region of size between 63 and 127 [-Wformat-truncation=]
That one isn't a vulnerability. It doesn't overflow a buffer. Yes, it may truncate the resulting string to fit into the buffer. That's the point of using snprintf, to not overflow anything, ever.
May I ask @grishka where did you learn programming in general and programming C/C++ specifically?
On the internet.
Some of them are critical and can cause vulnerabilities. Full build log: http://koji.russianfedora.pro/kojifiles/work/tasks/5923/45923/build.log