git.michaelhowe.org Git - packages/o/openafs.git/commit

]> git.michaelhowe.org Git - packages/o/openafs.git/commit

projects / packages / o / openafs.git / commit

author	Jeffrey Altman <jaltman@secure-endpoints.com>
	Tue, 8 Jan 2008 06:29:47 +0000 (06:29 +0000)
committer	Jeffrey Altman <jaltman@secure-endpoints.com>
	Tue, 8 Jan 2008 06:29:47 +0000 (06:29 +0000)
commit	0d94d0921baa779847d8f4345a4ae2a11b2f4911
tree	34afbd959f6827679ea376dc31920db98d501d2b	tree \| snapshot
parent	0ac284821f1dad5670d7704594eb90507684e425	commit \| diff

DEVEL15-windows-printf-format-string-protection-20080108

LICENSE MIT

Do not pass strings generated from incoming network data to ??printf
as the format string. Instead use a format string of "%s". This protects
against %? expansions being inserted in the string.

(cherry picked from commit a05df915505ab3e77e46e39a5b232086c43fc8bf)

src/WINNT/afsd/smb3.c

diff | blob | history

RSS Atom