Bug#507107: gbatnav: buffer overflow when handling environmental variables

[Raphael Geissert]

Package: gbatnav
Version: 1.0.4cvs20051004-2
Severity: normal

Hi,

While scanning some packages I found the following piece of code which leads 
to a buffer overflow when an overly long HOME env var is used.

Affected code (gbnclient/gbnclient.c):
>         gchar temporal[100];
>        
> sprintf(temporal,"/gbnclient/data/playername=%s",getenv("LOGNAME"));

Cheers,
-- 
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net

signature.asc
Description: This is a digitally signed message part.