summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--lib/libc/stdio/mktemp.39
1 files changed, 6 insertions, 3 deletions
diff --git a/lib/libc/stdio/mktemp.3 b/lib/libc/stdio/mktemp.3
index d78d67c..9b92d4a 100644
--- a/lib/libc/stdio/mktemp.3
+++ b/lib/libc/stdio/mktemp.3
@@ -186,9 +186,12 @@ See
.Xr gcc 1
for more information.
.Sh BUGS
-An attacker can guess the filenames produced by
-.Fn mktemp .
-Whenever it is possible
+This family of functions produces filenames which can be guessed.
+This makes the race in
+.Fn mktemp ,
+between testing for a file's existence and opening it for use,
+particularly dangerous from a security perspective.
+Whenever it is possible,
.Fn mkstemp
should be used instead.
.Sh SEE ALSO
OpenPOWER on IntegriCloud