On Tue, 22 Sep 2009, Timo Sirainen wrote: > On Sep 22, 2009, at 9:46 AM, Don Armstrong wrote: > > >Attached please find the trivial patch for this security fix. > > snprintf, not sprintf: > > - sprintf(errbuf, "flag '%s': not a valid relational operation", r); > + sprintf(errbuf, sizeof(errbuf), "flag '%s': not a valid > relational operation", r); >
Eek. Yes, right. I'll attach a corrected patch one I rebuild everything again. (Or DSA can continue on with this trivial fix). Don Armstrong -- "There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence." -- Jeremy S. Anderson http://www.donarmstrong.com http://rzlab.ucr.edu -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
