...
Another common mistake is to use more format specifiers than supplied arguments. This results in undefined behavior, which could end up pulling extra values off the stack and unintentionally exposing data. The following example illustrates a case of this:
| Code Block | ||
|---|---|---|
| ||
const char const *error_msg = "Resource not available to user."; /* ... */ printf("Error (%s): %s", error_msg); |
...