$OpenBSD: patch-src_command_c,v 1.3 2007/04/01 05:37:28 steven Exp $
--- src/command.c.orig	Wed Mar 26 07:01:23 2003
+++ src/command.c	Sun Apr  1 07:30:05 2007
@@ -3098,7 +3098,7 @@ rxvt_tt_printf(rxvt_t *r, const char *fmt,...)
     unsigned char   buf[256];
 
     va_start(arg_ptr, fmt);
-    vsprintf((char *)buf, fmt, arg_ptr);
+    vsnprintf((char *)buf, sizeof(buf), fmt, arg_ptr);
     va_end(arg_ptr);
     rxvt_tt_write(r, buf, (unsigned int)STRLEN(buf));
 }