[Pkg-electronics-commits] [SCM] Packaging for gEDA branch, master, updated. debian/1%1.6.2-2-11-g1af4689
أحمد المحمو =?UTF-8?Q?=D8=AF=D9=8A=20?=(Ahmed El-Mahmoudy)
aelmahmoudy at sabily.org
Thu Nov 24 18:26:45 UTC 2011
The following commit has been merged in the master branch:
commit 702cd3793cf20017e9bf559be9040ef62aed9865
Author: أحمد المحمودي (Ahmed El-Mahmoudy) <aelmahmoudy at sabily.org>
Date: Thu Nov 24 16:25:10 2011 +0200
Added format-security.diff patch to fix possible format security
problems when displaying 'message' string
diff --git a/debian/patches/format-security.diff b/debian/patches/format-security.diff
new file mode 100644
index 0000000..2e74aa7
--- /dev/null
+++ b/debian/patches/format-security.diff
@@ -0,0 +1,18 @@
+Description: Fix possible security problems when displaying message string
+Author: أحمد المحمودي (Ahmed El-Mahmoudy) <aelmahmoudy at sabily.org>
+Bug: https://bugs.launchpad.net/geda/+bug/894400
+Forwarded: https://bugs.launchpad.net/geda/+bug/894400/+attachment/2607078/+files/format-security.diff
+--- a/gschem/src/gschem.c
++++ b/gschem/src/gschem.c
+@@ -216,9 +216,9 @@
+ GtkWidget* error_diag =
+ gtk_message_dialog_new (NULL, 0, GTK_MESSAGE_ERROR,
+ GTK_BUTTONS_OK,
+- message);
++ "%s", message);
+ gtk_dialog_run (GTK_DIALOG (error_diag));
+- g_error (message);
++ g_error ("%s", message);
+ }
+
+ /* Allocate w_current */
diff --git a/debian/patches/series b/debian/patches/series
index b174557..13440cb 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,2 +1,3 @@
desktop.diff
manpage_typos.diff
+format-security.diff
--
Packaging for gEDA
More information about the Pkg-electronics-commits
mailing list