File perl-DBD-Pg-CVE-2012-1151.patch of Package perl-DBD-Pg

--- dbdimp.c
+++ dbdimp.c
@@ -321,7 +321,7 @@ static void pg_warn (void * arg, const c
 						DBIc_is(imp_dbh, DBIcf_PrintWarn) ? 1 : 0);
 
 		if (DBIc_WARN(imp_dbh) && DBIc_is(imp_dbh, DBIcf_PrintWarn))
-			warn(message);
+			warn("%s", message);
 
 		if (TEND) TRC(DBILOGFP, "%sEnd pg_warn\n", THEADER);
 	}
@@ -1506,7 +1506,7 @@ int dbd_st_prepare (SV * sth, imp_sth_t
 
 		if (pg_st_prepare_statement(aTHX_ sth, imp_sth)!=0) {
 			TRACE_PQERRORMESSAGE;
-			croak (PQerrorMessage(imp_dbh->conn));
+			croak ("%s", PQerrorMessage(imp_dbh->conn));
 		}
 	}