fedora 23
misc weakness #251

4

Weakness Breakdown


Definition:

The software specifies permissions for a security-critical resource in a way that allows the resource to be read or modified by unintended actors.

Warning code(s):

This function is obsolete and not portable. It was in SUSv2 but removed by POSIX.2. What it does exactly varies considerably between systems, particularly in where its prompt is displayed and where it gets its data.

File Name:

libcaca-0.99.beta18/caca/caca_conio.h

Context:

The highlighted line of code below is the trigger point of this particular Fedora 23 misc weakness.

 #   define _wscroll caca_conio__wscroll
#endif

#if !defined _DOXYGEN_SKIP_ME && !defined __LIBCACA__
#   undef cgets
#   define cgets caca_conio_cgets
#   undef clreol
#   define clreol caca_conio_clreol
#   undef clrscr
#   define clrscr caca_conio_clrscr
#   undef cprintf
#   define cprintf caca_conio_cprintf
#   undef cputs
#   define cputs caca_conio_cputs
#   undef cscanf
#   define cscanf caca_conio_cscanf
#   undef delay
#   define delay caca_conio_delay
#   undef delline
#   define delline caca_conio_delline
#   undef getch
#   define getch caca_conio_getch
#   undef getche
#   define getche caca_conio_getche
#   undef getpass
#   define getpass caca_conio_getpass
#   undef gettext
#   define gettext caca_conio_gettext
#   undef gettextinfo
#   define gettextinfo caca_conio_gettextinfo
#   undef gotoxy
#   define gotoxy caca_conio_gotoxy
#   undef highvideo
#   define highvideo caca_conio_highvideo
#   undef insline
#   define insline caca_conio_insline
#   undef kbhit
#   define kbhit caca_conio_kbhit
#   undef lowvideo
#   define lowvideo caca_conio_lowvideo
#   undef movetext
#   define movetext caca_conio_movetext
#   undef normvideo
#   define normvideo caca_conio_normvideo
#   undef nosound
#   define nosound caca_conio_nosound
#   undef printf
#   define printf caca_conio_printf
#   undef putch
#   define putch caca_conio_putch 

The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a world­wide basis.