aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorhiro <hiro@ee746299-78ed-0310-b773-934348b2243d>2007-08-23 01:27:21 +0000
committerhiro <hiro@ee746299-78ed-0310-b773-934348b2243d>2007-08-23 01:27:21 +0000
commit1af4d68a52c15c008b3e9d50d21348d509dd0c26 (patch)
tree58b3807de94b5d6545255f121e22869ae63cd015
parent08b6c427a1c7f206927d66a49bb5860287c9b672 (diff)
fixed format string vulnerability.
git-svn-id: svn://sylpheed.sraoss.jp/sylpheed/trunk@1880 ee746299-78ed-0310-b773-934348b2243d
-rw-r--r--ChangeLog5
-rw-r--r--ChangeLog.ja5
-rw-r--r--src/inc.c2
3 files changed, 11 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index ec243498..977c97b3 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+2007-08-23
+
+ * src/inc.c: inc_put_error(): fixed format string vulnerability
+ (thanks to Ulf Harnhammar, Secunia Research).
+
2007-07-20
* version 2.4.4
diff --git a/ChangeLog.ja b/ChangeLog.ja
index 00775287..6f664dfa 100644
--- a/ChangeLog.ja
+++ b/ChangeLog.ja
@@ -1,3 +1,8 @@
+2007-08-23
+
+ * src/inc.c: inc_put_error(): フォーマット文字列脆弱性を修正
+ (Ulf Harnhammar (Secunia Research) さん thanks)。
+
2007-07-20
* version 2.4.4
diff --git a/src/inc.c b/src/inc.c
index 4a0c96d8..fff5766e 100644
--- a/src/inc.c
+++ b/src/inc.c
@@ -1364,7 +1364,7 @@ static void inc_put_error(IncState istate, const gchar *msg)
log_warning("%s\n", log_msg);
}
if (err_msg) {
- alertpanel_error(err_msg);
+ alertpanel_error("%s", err_msg);
g_free(err_msg);
}
}