review.tizen.org Git - platform/core/api/media-controller.git/commit

projects / platform / core / api / media-controller.git / commit

author	Jiyong <jiyong.min@samsung.com>
	Wed, 18 Dec 2024 06:45:43 +0000 (15:45 +0900)
committer	Jiyong Min <jiyong.min@samsung.com>
	Wed, 18 Dec 2024 07:16:30 +0000 (07:16 +0000)
commit	b7b8cd3d42d5793aa1b5840b70f72a9dbe0ddb4b
tree	8c23cc3e308c137660e1c9019c87d2506623a58f	tree \| snapshot
parent	c3722f639182ef6b8ac42721fd5276be2e979f8e	commit \| diff

Bug fix. insecure strncmp

- fix svace issue (LIB.INSECURE_STRNCMP)

The problem that such using checks only prefix of string because null-terminator is not checked.
It may be source of vulnarability when using for compariso passwords.
Correct pattern should use strlen(arg) + 1.

Change-Id: Ic9ac12468a6c81901e1c169097109e47a4c496fa

packaging/capi-media-controller.spec		diff \| blob \| history
svc/media_controller_db_util.c		diff \| blob \| history

Domain: Multimedia / Media Content;

RSS Atom