开放源代码软件Apache 成熟度评估报告 - 开源中国社区- 软件镜像下载

More documents

Recommendations

Info

Severity: HighIssue: sprintfCheck to be sure that the non-constant format string passed as argument 2to this function call does not come from an untrusted source that couldhave added formatting characters that the code is not prepared to handle.File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:27[5] sprintf(buf, "%"APR_SSIZE_T_FMT, var);File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:38[5]sprintf(buf, "%" APR_SIZE_T_FMT, var);File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:49[5]sprintf(buf, "%" APR_OFF_T_FMT, var);File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:60[5]sprintf(buf, "%" APR_PID_T_FMT, var);File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:71[5]sprintf(buf, "%" APR_INT64_T_FMT, var);File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:82[5]sprintf(buf, "%" APR_UINT64_T_FMT, var);File: httpd-2.2.15//srclib/apr/test/testfmt.c Line:93[5]sprintf(buf, "%" APR_UINT64_T_HEX_FMT, var);File: httpd-2.2.15//modules/dav/main/util_lock.c Line:120[9]sprintf(tmp, "%s" DEBUG_CR,File: httpd-2.2.15//modules/dav/fs/repos.c Line:1868[16](void) sprintf(buf, "%" APR_OFF_T_FMT, resource->info->finfo.size);Severity: HighIssue: vsprintfCheck to be sure that the non-constant format string passed as argument 2to this function call does not come from an untrusted source that couldhave added formatting characters that the code is not prepared to handle.File: httpd-2.2.15//srclib/apr/build/jlibtool.c Line:307[22] res =vsprintf( str, fmt, ap );Severity: HighIssue: vsprintfCheck to be sure that the format string passed as argument 2 to thisfunction call does not come from an untrusted source that could have addedformatting characters that the code is not prepared to handle.
Additionally, the format string could contain `%s' without precision thatcould result in a buffer overflow.File: httpd-2.2.15//srclib/apr/build/jlibtool.c Line:307[22]res = vsprintf( str, fmt, ap );Severity: HighIssue: umaskumask() can easily be used to create files with unsafe priviledges. Itshould be set to restrictive values.File: httpd-2.2.15//srclib/apr/build/jlibtool.c Line:690[17]old_umask = umask(0);File: httpd-2.2.15//srclib/apr/build/jlibtool.c Line:691[5]umask(old_umask);File: httpd-2.2.15//support/suexec.c Line:597[5]umask(AP_SUEXEC_UMASK);File: httpd-2.2.15//modules/generators/mod_cgid.c Line:628[13]omask = umask(0077); /* so that only Apache can use socket */ File:httpd-2.2.15//modules/generators/mod_cgid.c Line:630[5]umask(omask); /* can't fail, so can't clobber errno */Severity: HighIssue: realpathBe sure the destination buffer is at least MAXPATHLEN big. This functionmay still internally overflow a static buffer, try to avoid using it. Ifyou must, check the size the path your pass in is no longer thanMAXPATHLEN File: httpd-2.2.15//srclib/apr/build/jlibtool.c Line:999[21]expanded_path = realpath(newarg, expanded_path);Severity: HighIssue: systemArgument 1 to this function call should be checked to ensure that it doesnot come from an untrusted source without first verifying that it containsnothing dangerous.File: httpd-2.2.15//srclib/apr/build/aplibtool.c Line:576[5]system(cmd); Severity: HighIssue: LoadLibraryALoadLibrary will search several places for a library if no path isspecified, allowing trojan DLL's to be inserted elsewhere even if the
Page 5: ‣ 启动和停止 Apache。
Page 8 and 9: 软件成熟度评估软件
Page 11 and 12: Apache 软件成熟度评估
Page 13 and 14: File: httpd-2.2.15//srclib/apr-util
Page 15 and 16: File: httpd-2.2.15//support/ab.c Li
Page 17 and 18: hp = gethostbyname(hostname);File:
Page 19 and 20: File: httpd-2.2.15//srclib/apr/buil
Page 21 and 22: File: httpd-2.2.15//srclib/apr/dso/
Page 23 and 24: File: httpd-2.2.15//modules/arch/wi
Page 25 and 26: File: httpd-2.2.15//srclib/apr/buil
Page 27 and 28: strcat(errbuf, strerror(errno));Fil
Page 29: Severity: High Issue:getpassTruncat
Page 33: 2.2.15//support/win32/wintty.c Line

开放源代码软件Apache 成熟度评估报告 - 开源中国社区- 软件镜像下载

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?