Overview

File 4f5577dd4672d228e4180f06bdbd66f343ea45e0.patch of Package mxml.openSUSE_Leap_15.1_Update

From 4f5577dd4672d228e4180f06bdbd66f343ea45e0 Mon Sep 17 00:00:00 2001
From: Michael R Sweet <michael.r.sweet@gmail.com>
Date: Mon, 3 Dec 2018 11:21:39 -0500
Subject: [PATCH] Fix potential buffer overflow when writing a double (Issue
 #233)

---
 CHANGES.md  | 2 ++
 mxml-file.c | 4 ++--
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/mxml-file.c b/mxml-file.c
index 3c2b0a8..7a2a329 100644
--- a/mxml-file.c
+++ b/mxml-file.c
@@ -2881,7 +2881,7 @@ mxml_write_node(mxml_node_t     *node,	/* I - Node to write */
 	      col ++;
 	  }
 
-	  sprintf(s, "%d", current->value.integer);
+	  snprintf(s, sizeof(s), "%d", current->value.integer);
 	  if (mxml_write_string(s, p, putc_cb) < 0)
 	    return (-1);
 
@@ -2911,7 +2911,7 @@ mxml_write_node(mxml_node_t     *node,	/* I - Node to write */
 	      col ++;
 	  }
 
-	  sprintf(s, "%f", current->value.real);
+	  snprintf(s, sizeof(s), "%f", current->value.real);
 	  if (mxml_write_string(s, p, putc_cb) < 0)
 	    return (-1);
openSUSE Build Service is sponsored by
Places