diff options
Diffstat (limited to 'lib/libc/gen/setproctitle.3')
-rw-r--r-- | lib/libc/gen/setproctitle.3 | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/libc/gen/setproctitle.3 b/lib/libc/gen/setproctitle.3 index a09d539..96fbc5a 100644 --- a/lib/libc/gen/setproctitle.3 +++ b/lib/libc/gen/setproctitle.3 @@ -101,7 +101,7 @@ source code by .Sh BUGS Never pass a string with user-supplied data as a format without using .Ql %s . -An attacker can put format specifiers in the string to mangle your stack, +An attacker can put format specifiers in the string to mangle your stack, leading to a possible security hole. This holds true even if the string was built using a function like .Fn snprintf , |