- Fix a remote format string vulnerability

- Remove attribution from pkg-descr

PR:		ports/86833
Submitted by:	maintainer
Security:	fixes a remote format string vulnerability
This commit is contained in:
Jean-Yves Lefort 2005-10-02 15:58:54 +00:00
parent fafdc13474
commit bad1c3bd65
Notes: svn2git 2021-03-31 03:12:20 +00:00
svn path=/head/; revision=143994
3 changed files with 12 additions and 3 deletions

View file

@ -7,6 +7,7 @@
PORTNAME= weex
PORTVERSION= 2.6.1.5
PORTREVISION= 1
CATEGORIES= ftp
MASTER_SITES= ${MASTER_SITE_SOURCEFORGE_EXTENDED}
MASTER_SITE_SUBDIR= ${PORTNAME}

View file

@ -0,0 +1,11 @@
--- src/log.c.orig Mon Aug 18 11:52:38 2003
+++ src/log.c Sun Oct 2 11:06:58 2005
@@ -183,7 +183,7 @@
fp=log_open();
for(i=0;i<max_log;i++){
- fprintf(fp,log_str[i]);
+ fprintf(fp,"%s",log_str[i]);
free(log_str[i]);
}
free(log_str);

View file

@ -9,6 +9,3 @@ Main features:
* caching to speed up the synchronization process
WWW: http://weex.sourceforge.net/
- ehaupt
ehaupt@critical.ch