Bug 24924 - Format String vulnerabilities in update-desktop-database.c
Summary: Format String vulnerabilities in update-desktop-database.c
Status: RESOLVED FIXED
Alias: None
Product: desktop-file-utils
Classification: Unclassified
Component: general (show other bugs)
Version: unspecified
Hardware: Other All
: medium normal
Assignee: Vincent Untz
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-11-04 12:04 UTC by Tobias Mueller
Modified: 2010-03-09 18:36 UTC (History)
0 users

See Also:
i915 platform:
i915 features:

Attachments
Patch which uses proper format strings (633 bytes, patch)
2009-11-04 12:04 UTC, Tobias Mueller 		Details | Splinter Review
View All

Description Tobias Mueller 2009-11-04 12:04:52 UTC 
Created attachment 30965 [details] [review]
Patch which uses proper format strings

The macro udd_verbose_print is used wrongly and thus introduces format string vulnerabilites.
Comment 1 Vincent Untz 2010-03-09 18:36:13 UTC 
Fixed in git, with 681d5173684a8a758d913e52cc704e3dab3d562c.

I fixed it another way, though.

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.