Fix some format string vulnerabilities and bump PKGNAME.

http://www.open-security.org/advisories/16

from NetBSD

ok jakemsr@
This commit is contained in:
bernd 2006-04-22 18:37:28 +00:00
parent 54ef961448
commit 2e5f4dd397
3 changed files with 44 additions and 1 deletions

View File

@ -1,8 +1,9 @@
# $OpenBSD: Makefile,v 1.1.1.1 2006/03/24 22:46:37 jakemsr Exp $
# $OpenBSD: Makefile,v 1.2 2006/04/22 18:37:28 bernd Exp $
COMMENT= "multimedia player"
DISTNAME= xine-ui-0.99.4
PKGNAME= ${DISTNAME}p0
CATEGORIES= multimedia
HOMEPAGE= http://xinehq.de/

View File

@ -0,0 +1,30 @@
$OpenBSD: patch-src_xitk_main_c,v 1.1 2006/04/22 18:37:28 bernd Exp $
--- src/xitk/main.c.orig Sun Jul 24 04:40:37 2005
+++ src/xitk/main.c Sat Apr 22 11:49:42 2006
@@ -456,7 +456,7 @@ static void print_formatted(char *title,
int len;
char *blanks = " ";
- printf(title);
+ printf("%s", title);
sprintf(buffer, "%s", blanks);
plugin = *plugins++;
@@ -469,7 +469,7 @@ static void print_formatted(char *title,
sprintf(buffer, "%s%s%s", buffer, (strlen(buffer) == strlen(blanks)) ? "" : ", ", plugin);
}
else {
- printf(buffer);
+ printf("%s", buffer);
printf(",\n");
snprintf(buffer, sizeof(buffer), "%s%s", blanks, plugin);
}
@@ -478,7 +478,7 @@ static void print_formatted(char *title,
}
if(strlen(buffer))
- printf(buffer);
+ printf("%s", buffer);
printf(".\n\n");
}

View File

@ -0,0 +1,12 @@
$OpenBSD: patch-src_xitk_xine-toolkit_xitk_c,v 1.1 2006/04/22 18:37:28 bernd Exp $
--- src/xitk/xine-toolkit/xitk.c.orig Sat May 21 00:02:05 2005
+++ src/xitk/xine-toolkit/xitk.c Sat Apr 22 11:49:42 2006
@@ -1877,7 +1877,7 @@ void xitk_init(Display *display, XColor
sprintf(buffer, "%s%s", buffer, " ]-");
if(verbosity)
- printf(buffer);
+ printf("%s", buffer);
gXitk->wm_type = xitk_check_wm(display);