[packages/cvsnt.git] / format-security.patch

--- cvs-nserver-1.11.1.52/diff/diff3.c~	2001-05-19 14:05:15.000000000 +0200
+++ cvs-nserver-1.11.1.52/diff/diff3.c	2013-12-07 14:42:15.691191794 +0100
@@ -1502,7 +1502,7 @@
 	      line = 0;
 	      do
 		{
-		  printf_output (line_prefix);
+		  printf_output ("%s", line_prefix);
 		  cp = D_RELNUM (ptr, realfile, line);
 		  length = D_RELLEN (ptr, realfile, line);
 		  write_output (cp, length);
--- cvsnt-2.5.05.3744/src/client.cpp~	2010-03-23 22:53:46.000000000 +0100
+++ cvsnt-2.5.05.3744/src/client.cpp	2013-12-07 14:49:05.851188825 +0100
@@ -3731,7 +3731,7 @@
 				/* Overflow here??  possible, but we're only on the client and about to die anyway */
 				if(!strcmp(read_buf,"bad auth protocol start"))
 					sprintf(read_buf,":%s: protocol not supported by server",client_protocol->name);
-				error(1, 0, read_buf);
+				error(1, 0, "%s", read_buf);
 			}
 			else
 			{
--- cvsnt-2.5.05.3744/src/root.cpp~	2009-08-04 18:32:43.000000000 +0200
+++ cvsnt-2.5.05.3744/src/root.cpp	2013-12-07 14:54:19.931186551 +0100
@@ -1054,7 +1054,7 @@
 
     /* get the appropriate port string */
 	if(!root->port)
-		sprintf (port_s, get_default_client_port(client_protocol));
+		sprintf (port_s, "%s", get_default_client_port(client_protocol));
 	else
 		strcpy(port_s,root->port);
 
--- cvsnt-2.5.05.3744/src/subr.cpp~	2013-12-07 14:48:03.000000000 +0100
+++ cvsnt-2.5.05.3744/src/subr.cpp	2013-12-07 14:54:53.351186310 +0100
@@ -85,7 +85,7 @@
 		char buf[80];
 		sprintf (buf, "out of memory; can not allocate %lu bytes",
 			(unsigned long) bytes);
-		error (1, 0, buf);
+		error (1, 0, "%s", buf);
     }
 	MALLOC_CHECK();
 
@@ -123,7 +123,7 @@
 		char buf[80];
 		sprintf (buf, "out of memory; can not reallocate %lu bytes",
 			(unsigned long) bytes);
-		error (1, 0, buf);
+		error (1, 0, "%s", buf);
     }
 	MALLOC_CHECK();
     return (cp);
Commit	Line	Data
cc573531 JR	1	--- cvs-nserver-1.11.1.52/diff/diff3.c~ 2001-05-19 14:05:15.000000000 +0200
	2	+++ cvs-nserver-1.11.1.52/diff/diff3.c 2013-12-07 14:42:15.691191794 +0100
	3	@@ -1502,7 +1502,7 @@
	4	line = 0;
	5	do
	6	{
	7	- printf_output (line_prefix);
	8	+ printf_output ("%s", line_prefix);
	9	cp = D_RELNUM (ptr, realfile, line);
	10	length = D_RELLEN (ptr, realfile, line);
	11	write_output (cp, length);
	12	--- cvsnt-2.5.05.3744/src/client.cpp~ 2010-03-23 22:53:46.000000000 +0100
	13	+++ cvsnt-2.5.05.3744/src/client.cpp 2013-12-07 14:49:05.851188825 +0100
	14	@@ -3731,7 +3731,7 @@
	15	/* Overflow here?? possible, but we're only on the client and about to die anyway */
	16	if(!strcmp(read_buf,"bad auth protocol start"))
	17	sprintf(read_buf,":%s: protocol not supported by server",client_protocol->name);
	18	- error(1, 0, read_buf);
	19	+ error(1, 0, "%s", read_buf);
	20	}
	21	else
	22	{
	23	--- cvsnt-2.5.05.3744/src/root.cpp~ 2009-08-04 18:32:43.000000000 +0200
	24	+++ cvsnt-2.5.05.3744/src/root.cpp 2013-12-07 14:54:19.931186551 +0100
	25	@@ -1054,7 +1054,7 @@
	26
	27	/* get the appropriate port string */
	28	if(!root->port)
	29	- sprintf (port_s, get_default_client_port(client_protocol));
	30	+ sprintf (port_s, "%s", get_default_client_port(client_protocol));
	31	else
	32	strcpy(port_s,root->port);
	33
	34	--- cvsnt-2.5.05.3744/src/subr.cpp~ 2013-12-07 14:48:03.000000000 +0100
	35	+++ cvsnt-2.5.05.3744/src/subr.cpp 2013-12-07 14:54:53.351186310 +0100
	36	@@ -85,7 +85,7 @@
	37	char buf[80];
	38	sprintf (buf, "out of memory; can not allocate %lu bytes",
	39	(unsigned long) bytes);
	40	- error (1, 0, buf);
	41	+ error (1, 0, "%s", buf);
	42	}
	43	MALLOC_CHECK();
	44
	45	@@ -123,7 +123,7 @@
	46	char buf[80];
	47	sprintf (buf, "out of memory; can not reallocate %lu bytes",
	48	(unsigned long) bytes);
	49	- error (1, 0, buf);
	50	+ error (1, 0, "%s", buf);
	51	}
	52	MALLOC_CHECK();
	53	return (cp);