alpine 3.6
race weakness #26

A race condition occurs within concurrent environments. It may be in the form of a function call, a small number of instructions, a series of program invocations and more.

5

Weakness Breakdown


Warning code(s):

This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL..

File Name:

./src/GraphicsMagick-1.3.27/magick/utility.c

Context:
length=readlink(link_path, real_path, PATH_MAX);

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.