Specify maximum field width in sscanf() to avoid buffer overflows.

2007-05-30 Mukund Sivaraman <muks@mukund.org> * plug-ins/common/compose.c: Specify maximum field width in sscanf() to avoid buffer overflows. svn path=/trunk/; revision=22673
2007-05-30 17:15:38 +00:00 · 2007-05-30 17:15:38 +00:00 · f111033d15
parent edd086bb5f
commit f111033d15
2 changed files with 6 additions and 1 deletions
--- a/5
+++ b/5
@ -1,3 +1,8 @@
+2007-05-30  Mukund Sivaraman  <muks@mukund.org>
+
+	* plug-ins/common/compose.c: Specify maximum field width in
+	sscanf() to avoid buffer overflows.
+
 2007-05-30  Mukund Sivaraman  <muks@mukund.org>

 	* plug-ins/common/channel_mixer.c: Specify maximum field width in
--- a/plug-ins/common/compose.c
+++ b/plug-ins/common/compose.c
@ -481,7 +481,7 @@ run (const gchar      *name,
          gint nret;

          nret = sscanf (gimp_parasite_data (parasite),
-                         "source=%d type=%s %d %d %d %d",
+                         "source=%d type=%31s %d %d %d %d",
                         &composevals.source_layer_ID,
                         composevals.compose_type,
                         &composevals.inputs[0].comp.ID,