format-security.patch

   1 --- cvs-nserver-1.11.1.52/diff/diff3.c~ 2001-05-19 14:05:15.000000000 +0200
   2 +++ cvs-nserver-1.11.1.52/diff/diff3.c  2013-12-07 14:42:15.691191794 +0100
   3 @@ -1502,7 +1502,7 @@
   4               line = 0;
   5               do
   6                 {
   7 -                 printf_output (line_prefix);
   8 +                 printf_output ("%s", line_prefix);
   9                   cp = D_RELNUM (ptr, realfile, line);
  10                   length = D_RELLEN (ptr, realfile, line);
  11                   write_output (cp, length);
  12 --- cvsnt-2.5.05.3744/src/client.cpp~   2010-03-23 22:53:46.000000000 +0100
  13 +++ cvsnt-2.5.05.3744/src/client.cpp    2013-12-07 14:49:05.851188825 +0100
  14 @@ -3731,7 +3731,7 @@
  15                                 /* Overflow here??  possible, but we're only on the client and about to die anyway */
  16                                 if(!strcmp(read_buf,"bad auth protocol start"))
  17                                         sprintf(read_buf,":%s: protocol not supported by server",client_protocol->name);
  18 -                               error(1, 0, read_buf);
  19 +                               error(1, 0, "%s", read_buf);
  20                         }
  21                         else
  22                         {
  23 --- cvsnt-2.5.05.3744/src/root.cpp~     2009-08-04 18:32:43.000000000 +0200
  24 +++ cvsnt-2.5.05.3744/src/root.cpp      2013-12-07 14:54:19.931186551 +0100
  25 @@ -1054,7 +1054,7 @@
  26
  27      /* get the appropriate port string */
  28         if(!root->port)
  29 -               sprintf (port_s, get_default_client_port(client_protocol));
  30 +               sprintf (port_s, "%s", get_default_client_port(client_protocol));
  31         else
  32                 strcpy(port_s,root->port);
  33
  34 --- cvsnt-2.5.05.3744/src/subr.cpp~     2013-12-07 14:48:03.000000000 +0100
  35 +++ cvsnt-2.5.05.3744/src/subr.cpp      2013-12-07 14:54:53.351186310 +0100
  36 @@ -85,7 +85,7 @@
  37                 char buf[80];
  38                 sprintf (buf, "out of memory; can not allocate %lu bytes",
  39                         (unsigned long) bytes);
  40 -               error (1, 0, buf);
  41 +               error (1, 0, "%s", buf);
  42      }
  43         MALLOC_CHECK();
  44
  45 @@ -123,7 +123,7 @@
  46                 char buf[80];
  47                 sprintf (buf, "out of memory; can not reallocate %lu bytes",
  48                         (unsigned long) bytes);
  49 -               error (1, 0, buf);
  50 +               error (1, 0, "%s", buf);
  51      }
  52         MALLOC_CHECK();
  53      return (cp);