secguide icon indicating copy to clipboard operation
secguide copied to clipboard

Published 20 hours ago verified publisher icon Tencent

C ++安全指南.md 修改建议

Open code1w opened this issue 3 years ago • 0 comments

// Bad char a[4] = {0}; _snprintf(a, 4, "%s", "AAAA"); foo = strlen(a);

上述代码在MSVC中执行后, a[4] == 'A',因此字符串未以0结尾。

这里的a[4]== 'A' 应该改成a[3]=='A'

code1w avatar Oct 29 '21 06:10 code1w