Closed Machiry closed 7 years ago
As of now, taint propagation does not happen in case of sscanf and DR.CHECKER raises warnings if tainted data is used.
This could and should be fixed. Warning should be raised only if %s is used in the format specifier.
As of now, taint propagation does not happen in case of sscanf and DR.CHECKER raises warnings if tainted data is used.
This could and should be fixed. Warning should be raised only if %s is used in the format specifier.