Bug 486480

Summary:	=net-misc/tigervnc-1.2.80_p5065 : FORTIFY_SOURCE reports presence of overflow
Product:	Gentoo Linux	Reporter:	Agostino Sarubbo <ago>
Component:	Current packages	Assignee:	No maintainer - Look at https://wiki.gentoo.org/wiki/Project:Proxy_Maintainers if you want to take care of it <maintainer-needed>
Status:	RESOLVED FIXED
Severity:	normal	Keywords:	REGRESSION
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:
Package list:		Runtime testing required:	---
Bug Depends on:
Bug Blocks:	259417, 485436

Description Agostino Sarubbo gentoo-dev

2013-09-29 12:40:53 UTC

* Messages for package net-misc/tigervnc-1.2.80_p5065:

 * QA Notice: Package triggers severe warnings which indicate that it
 *            may exhibit random runtime failures.
 * /usr/include/bits/stdio2.h:66:44: warning: call to int __builtin___snprintf_chk(char*, long unsigned int, int, long unsigned int, const char*, ...) will always overflow destination buffer [enabled by default]
 * Please do not file a Gentoo bug and instead report the above QA
 * issues directly to the upstream developers of this software.
 * Homepage: http://www.tigervnc.org


From the log:

[ 97%] Building CXX object vncviewer/CMakeFiles/vncviewer.dir/parameters.cxx.o
Linking CXX executable x0vncserver
/var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/vncviewer/parameters.cxx: In function 'bool encodeValue(const char*, char*, size_t)':
/var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/vncviewer/parameters.cxx:199:69: warning: format '%d' expects argument of type 'int', but argum
ent 3 has type 'size_t {aka long unsigned int}' [-Wformat]
/var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/vncviewer/parameters.cxx:212:73: warning: format '%d' expects argument of type 'int', but argum
ent 3 has type 'size_t {aka long unsigned int}' [-Wformat]
/var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/vncviewer/parameters.cxx:230:67: warning: format '%d' expects argument of type 'int', but argum
ent 3 has type 'size_t {aka long unsigned int}' [-Wformat]
[ 97%] Built target x0vncserver
[ 98%] Building C object vncviewer/CMakeFiles/vncviewer.dir/keysym2ucs.c.o
In file included from /usr/include/stdio.h:934:0,
                 from /var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/common/rfb/Logger.h:25,
                 from /var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/common/rfb/LogWriter.h:25,
                 from /var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/vncviewer/parameters.cxx:38:
In function 'int snprintf(char*, size_t, const char*, ...)',
    inlined from 'void saveViewerParameters(const char*, const char*)' at /var/tmp/portage/net-misc/tigervnc-1.2.80_p5065/work/tigervnc-1.2.80-20130314svn5065/vncviewer/parameters.
cxx:527:33:
/usr/include/bits/stdio2.h:66:44: warning: call to int __builtin___snprintf_chk(char*, long unsigned int, int, long unsigned int, const char*, ...) will always overflow destination buffer [enabled by default]

Comment 1 Raúl Porcel (RETIRED) gentoo-dev

2013-09-29 16:38:16 UTC

Hrm...

Please do not file a Gentoo bug and instead report the above QA
 * issues directly to the upstream developers of this software.

Comment 2 Agostino Sarubbo gentoo-dev

2013-09-29 16:45:38 UTC

(In reply to Raúl Porcel from comment #1)
> Hrm...
> 
> Please do not file a Gentoo bug and instead report the above QA
>  * issues directly to the upstream developers of this software.

This is a valid bug for gentoo, see the tracker.

Comment 3 Pacho Ramos gentoo-dev

2016-05-24 08:37:23 UTC

I think this is fixed in 1.6.x versions