chainsaw 15/03/06 13:21:39 Added: 3.1.0-format-security.patch Log: Fix insecure printf statement in error path, as pointed out by Toralf Förster in bug #542138. (Portage version: 2.2.17/cvs/Linux x86_64, signed Manifest commit with key 0xB5058F9A)
Revision Changes Path 1.1 media-libs/libbs2b/files/3.1.0-format-security.patch file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/media-libs/libbs2b/files/3.1.0-format-security.patch?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/media-libs/libbs2b/files/3.1.0-format-security.patch?rev=1.1&content-type=text/plain Index: 3.1.0-format-security.patch =================================================================== --- src/bs2bconvert.c.orig 2015-03-06 12:24:00.168451618 +0000 +++ src/bs2bconvert.c 2015-03-06 12:22:20.504446655 +0000 @@ -153,7 +153,7 @@ if( ( infile = sf_open( infilename, SFM_READ, &sfinfo ) ) == NULL ) { printf( "Not able to open input file %s.\n", infilename ); - printf( sf_strerror( NULL ) ); + printf( "%s", sf_strerror( NULL ) ); return 1; }
