Secure Coding mailing list archives

Re: Spot the bug

From: ljknews <ljknews () mac com>
Date: Tue, 19 Jul 2005 19:04:02 +0100

At 9:55 AM -0400 7/19/05, Mark Curphey wrote:

If you fancy yourself as a good code reviewer you can play spot the bug at
MSDN. They will be getting harder !

http://msdn.microsoft.com/security/


The overarching bug seems to be the assertion that there is only one bug,
since those offering comments found two right off.

The less excusable of the two bugs appears at first glance to be an
out of bounds reference to an array, but on reflection is an error
in choice of programming language.
-- 
Larry Kilgallen

Current thread:

Spot the bug Mark Curphey (Jul 19)
- Re: Spot the bug ljknews (Jul 19)
  - Re: Spot the bug Pascal Meunier (Jul 19)
  - Re: Spot the bug Dave Aronson (Jul 21)
- Re: Spot the bug der Mouse (Jul 19)
  - Re: Spot the bug Blue Boar (Jul 19)
    - Re: Spot the bug der Mouse (Jul 21)
- Re: Spot the bug John Steven (Jul 19)
  - Re: Spot the bug Christopher Canova (Jul 20)
    - Re: Spot the bug Dave Aronson (Jul 21)
- <Possible follow-ups>
- RE: Spot the bug Michael Howard (Jul 21)