From ba461fc17059946155f2413e3f7accc6964d9921 Mon Sep 17 00:00:00 2001
From: Derrick Brashear <shadow@dementia.org>
Date: Sun, 11 Feb 2001 02:57:17 +0000
Subject: [PATCH] use-snprintf-for-krb-udp-error-packets-20010210

Avoid potential for overrunning buffer
---
 src/kauth/krb_udp.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/kauth/krb_udp.c b/src/kauth/krb_udp.c
index 0d470a8c3..78c28d6b0 100644
--- a/src/kauth/krb_udp.c
+++ b/src/kauth/krb_udp.c
@@ -560,7 +560,7 @@ static err_packet (ksoc, pkt, code, reason)
 
     if (reason == 0) reason = "";
     else if (strlen(reason) + 20 > sizeof(buf)) reason = "reason too long";
-    sprintf (buf, "code = %d: %s", code, reason);
+    snprintf (buf, 255, "code = %d: %s", code, reason);
 
     if (krb_udp_debug) {
 	printf ("Sending error packet to '%s'.'%s'@'%s' containing %s\n",
-- 
2.39.5