File: 15-format-security.patch

package info (click to toggle)
unace-nonfree 2.5-10
  • links: PTS, VCS
  • area: non-free
  • in suites: forky, sid, trixie
  • size: 2,044 kB
  • sloc: ansic: 14,564; makefile: 48; sh: 32; cpp: 21
file content (14 lines) | stat: -rw-r--r-- 426 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
 
Author: Fabian Greffrath <fabian+debian@greffrath.com>
Description: Fix format string vulnerability.

--- unace-nonfree-2.5.orig/source/apps/exe/output/output.c
+++ unace-nonfree-2.5/source/apps/exe/output/output.c
@@ -125,7 +125,7 @@ CHAR      DeleteStr[223];
     memset(&DeleteStr[74], ' ', 74);
     DeleteStr[222] = 0;
 
-    printf(DeleteStr);
+    printf("%s", DeleteStr);
 #ifndef __sun__
     fflush(stdout);
 #endif