aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--ChangeLog5
-rw-r--r--ChangeLog.ja5
-rw-r--r--src/inc.c2
3 files changed, 11 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index ec243498..977c97b3 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+2007-08-23
+
+ * src/inc.c: inc_put_error(): fixed format string vulnerability
+ (thanks to Ulf Harnhammar, Secunia Research).
+
2007-07-20
* version 2.4.4
diff --git a/ChangeLog.ja b/ChangeLog.ja
index 00775287..6f664dfa 100644
--- a/ChangeLog.ja
+++ b/ChangeLog.ja
@@ -1,3 +1,8 @@
+2007-08-23
+
+ * src/inc.c: inc_put_error(): フォーマット文字列脆弱性を修正
+ (Ulf Harnhammar (Secunia Research) さん thanks)。
+
2007-07-20
* version 2.4.4
diff --git a/src/inc.c b/src/inc.c
index 4a0c96d8..fff5766e 100644
--- a/src/inc.c
+++ b/src/inc.c
@@ -1364,7 +1364,7 @@ static void inc_put_error(IncState istate, const gchar *msg)
log_warning("%s\n", log_msg);
}
if (err_msg) {
- alertpanel_error(err_msg);
+ alertpanel_error("%s", err_msg);
g_free(err_msg);
}
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-24 09:49:49 +0000