review.tizen.org Git - platform/core/api/media-controller.git/commit

projects / platform / core / api / media-controller.git / commit

author	Jiyong <jiyong.min@samsung.com>
	Wed, 18 Dec 2024 06:45:43 +0000 (15:45 +0900)
committer	Jiyong <jiyong.min@samsung.com>
	Wed, 18 Dec 2024 06:45:43 +0000 (15:45 +0900)
commit	db1e071ad52b664c2acb3b80c28e05cd3033cd09
tree	8c23cc3e308c137660e1c9019c87d2506623a58f	tree \| snapshot
parent	f87293d892aa91db60a1ca4f7910388a13cfc311	commit \| diff

Bug fix. insecure strncmp

- fix svace issue (LIB.INSECURE_STRNCMP)

The problem that such using checks only prefix of string because null-terminator is not checked.
It may be source of vulnarability when using for compariso passwords.
Correct pattern should use strlen(arg) + 1.

Change-Id: Ic9ac12468a6c81901e1c169097109e47a4c496fa

packaging/capi-media-controller.spec		diff \| blob \| history
svc/media_controller_db_util.c		diff \| blob \| history

Domain: Multimedia / Media Content;

RSS Atom