Mikhail Chalov
Mikhail Chalov
There is a memory corruption issue inside the quicklz.c source file that ships with Percona XtraBackup. Specifically the problem happens on copying user-supplied binary data over heap allocated memory buffers...
## Description Replace sprintf(buf, ...) with snprintf(buf, sizeof(buf), ...), where buf is allocated with a size known at compile time. This makes sure we are not writing outside array/string bounds...
…tinues) Old style C functions `strcpy()`, `strcat()` and `sprintf()` are vulnerable to security issues due to lacking memory boundary checks. Replace these in the Client and SQL with safe new...
## Description Similar to 567b681 continue to replace use of strcat() and strcpy() with safer custom methods safe_strcat() and safe_strcpy(). ## How can this PR be tested? All build stages...