...
This noncompliant code example is exactly the same as the first noncompliant code example but uses the POSIX function syslog() [IEEE Std 1003.1:2013] instead of the fprintf() function, which . The syslog() function is also susceptible to format-string vulnerabilities:
...