alpine 3.6
race weakness #47

A race condition occurs within concurrent environments. It may be in the form of a function call, a small number of instructions, a series of program invocations and more.

5

Weakness Breakdown


Warning code(s):

This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL..

File Name:

./src/ImageMagick-7.0.5-10/MagickCore/utility.c

Context:
count=readlink(link_path,execution_path,PATH_MAX);

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.