alpine 3.6
buffer weakness #38

A “classic” buffer overflow exists when a program attempts to put more data in a buffer than it can hold, or when a program puts data in a memory area outside of the boundaries of a buffer.

3

Weakness Breakdown


Warning code(s):

Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once.

File Name:

./src/ArpON-3.0-ng/src/env.c

Context:
if (getenv(ENV_LDPRELOAD) != NULL) {

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.