On Tue, Nov 01, 2011 at 12:07:50AM -0700, rfc wrote: > jasper-1bug.900.1-security_fixes-1.patch says: > > /* Choose a file name. */ > - tmpnam(obj->pathname); > + snprintf(obj->pathname, L_tmpnam, "%stmp.XXXXXXXXXX", P_tmpdir); > > and <stdio.h> says: > > # define P_tmpdir "/tmp" > > so i think the snprintf format should be "%s/tmp.XXXXXXXXXX". > > bob. > I think that if you make that change, you will write to a file called /tmp//tmp.something (note the double '//'). As the patch header says, it came from debian like this.
But, thanks for reading it. ĸen -- das eine Mal als Tragödie, das andere Mal als Farce -- http://linuxfromscratch.org/mailman/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
