[vlc-devel] Re: [PATCH] Fix formats in printf() calls

Rémi Denis-Courmont rem at videolan.org
Mon Nov 28 16:40:55 CET 2005


Le Lundi 28 Novembre 2005 00:48, Diego 'Flameeyes' Pettenò a écrit :
> The attached patch fixes some printf() calls to use "%s" and avoid
> possible problems with formats.

I did apply the fix to the HTTP control module. However, you should note 
that the macro involved is not used anywhere in the code, so it's not 
really a security bug in release 0.8.4.

As for the osd fixes, there aren't format strings bugs, because we 
normally trust gettext input (disable NLS if you don't). On the other 
hand, the sprintf() involved seem to both include on off-by-one 
overflow bug which should be fixed in the trunk : in both case, we have 
a malloc(strlen()), instead of malloc(strlen()+1) to fit the '\0'.

Thanks for the report.

-- 
Rémi Denis-Courmont
http://www.simphalempin.com/home/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mailman.videolan.org/pipermail/vlc-devel/attachments/20051128/190e854b/attachment.sig>


More information about the vlc-devel mailing list