...
| Code Block | ||
|---|---|---|
| ||
char *temp;
char *copy = NULL;
if ((temp = getenv("TEST_ENV")) != NULL) {
copy = malloc(strlen(temp) + 1);
if (copy != NULL) {
strcpy(copy, temp);
}
else {
/* handle error condition */
}
}
|
Risk Assessment
This Making assumptions about the size of an environmental variable could result in a buffer overflow attack.
...