Package: tinyproxy
Severity: normal
Tags: patch
Below is a fix to a format string bug in tinyproxy. It does
not appear exploitable in the current version of tinyproxy.
--- log.c.orig 2006-05-08 05:47:26.000000000 -0700
+++ log.c 2006-05-08 05:47:29.000000000 -0700
@@ -217,7 +217,7 @@
continue;
#endif
- log_message(level, ptr);
+ log_message(level, "%s", ptr);
}
vector_delete(log_message_storage);
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
