tech-userlevel: Re: proposal: disable *printf %n specifier in libc in NetBSD 1.5

Subject: Re: proposal: disable *printf %n specifier in libc in NetBSD 1.5
To: Noriyuki Soda <soda@sra.co.jp>
From: Bill Sommerfeld <sommerfeld@orchard.arlington.ma.us>
List: tech-userlevel
Date: 09/11/2000 11:02:31

> > The %n format specifier is not used very often -- I've been unable to
> > find any use of it within the NetBSD source tree.
> 
> That means NetBSD userland is not well internationalized. :-<

How is %n used in I18N ?

> > Because it is used so infrequently, I'd like to *disable* the %n
> > format in userland by default.
> 
> Not only for setuid programs?

It's also a problem for network daemons, which often contain bugs of
this form as well.

						- Bill