Hi, * [EMAIL PROTECTED] [2008-04-16 22:05]: > Thanks for the help. I have made a patch that would fix the possible > buffer overflows. Please check the attached patch. [...] > if(path[0]!='/') > - sprintf(tmp,"%s/translations/%s",DATAPATH,path); > + snprintf(tmp,302,"%s/translations/%s",DATAPATH,path);
off-by two. Why don't you just use sizeof(tmp)? Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpPVVqaWkJtj.pgp
Description: PGP signature
