Fixes for possible buffer overflows in sprintf() usages.

author: Marc-André Lemburg <mal@egenix.com> 2001-11-28 11:47:00 (GMT)
committer: Marc-André Lemburg <mal@egenix.com> 2001-11-28 11:47:00 (GMT)
commit: d4c0a9c59b399bfa0d36030663f78aa18a68e051 (patch)
tree: 86bc79d1907b7ca06135eaf0921dbfe11d8451ab /Modules/readline.c
parent: 5107b4cf5fa4d748bab4022531e6c5741f31e196 (diff)
download: cpython-d4c0a9c59b399bfa0d36030663f78aa18a68e051.zip
cpython-d4c0a9c59b399bfa0d36030663f78aa18a68e051.tar.gz
cpython-d4c0a9c59b399bfa0d36030663f78aa18a68e051.tar.bz2
1 files changed, 2 insertions, 2 deletions
diff --git a/Modules/readline.c b/Modules/readline.c
index aa29a61..d213992 100644
--- a/Modules/readline.c
+++ b/Modules/readline.c
@@ -165,7 +165,7 @@ set_hook(const char * funcname, PyObject **hook_var, PyThreadState **tstate, PyO
 {
 	PyObject *function = Py_None;
 	char buf[80];
-	sprintf(buf, "|O:set_%s", funcname);
+	sprintf(buf, "|O:set_%.50s", funcname);
 	if (!PyArg_ParseTuple(args, buf, &function))
 		return NULL;
 	if (function == Py_None) {
@@ -181,7 +181,7 @@ set_hook(const char * funcname, PyObject **hook_var, PyThreadState **tstate, PyO
 		*tstate = PyThreadState_Get();
 	}
 	else {
-		sprintf(buf, "set_%s(func): argument not callable", funcname);
+		sprintf(buf, "set_%.50s(func): argument not callable", funcname);
 		PyErr_SetString(PyExc_TypeError, buf);
 		return NULL;
 	}
author	Marc-André Lemburg <mal@egenix.com>	2001-11-28 11:47:00 (GMT)
committer	Marc-André Lemburg <mal@egenix.com>	2001-11-28 11:47:00 (GMT)
commit	d4c0a9c59b399bfa0d36030663f78aa18a68e051 (patch)
tree	86bc79d1907b7ca06135eaf0921dbfe11d8451ab /Modules/readline.c
parent	5107b4cf5fa4d748bab4022531e6c5741f31e196 (diff)
download	cpython-d4c0a9c59b399bfa0d36030663f78aa18a68e051.zip cpython-d4c0a9c59b399bfa0d36030663f78aa18a68e051.tar.gz cpython-d4c0a9c59b399bfa0d36030663f78aa18a68e051.tar.bz2