This is the mail archive of the
binutils@sources.redhat.com
mailing list for the binutils project.
Re: Security patch for binutils-2.11.92.0.10 (2nd try)...
Nick Clifton wrote:
>
> OK - I will accept that mkstemp() is more secure than mktemp(), so
> using it would be a "Good Thing (tm)". I am just hoping that Steven
> might be prompted to change make_tempname() to return a file
> descriptor instead. (Or more probaly, create a new function called,
> say, open_tempname() which returns a file descriptor, since I suspect
> that there will be some places where the old behaviour of
> make_tempname cannot be easily replaced.
>
> So - Steven, do you want to do this ? If not, I will accept your
> patch as-is, but with one proviso - please could you submit a
> ChangeLog entry as well.
>
Sure, I will make the come up with a new function and such.
> PS. Oh - Steven - do you have a copyright assignment on file with the
> FSF ? If not, then I could accept the mkstemp() patch, since it is
> small and can be considered 'obvious', but a bigger patch, adding a
> new function, would require an assignment.
>
Uhh...no I do not have a copyright assignment on file. How do I do that?
-Steve
--
Steven J. Hill - Embedded SW Engineer