diff options
| author | Arnavion <arnavion@gmail.com> | 2014-09-25 00:54:38 -0700 |
|---|---|---|
| committer | Arnavion <arnavion@gmail.com> | 2014-09-25 00:54:38 -0700 |
| commit | e8fb2dde56e93c1c2641ae99f8b1988352270f55 (patch) | |
| tree | f12ef59b5473ac5a1e7850267fcb77513ffb4448 | |
| parent | 25c6638ce4f16f5298c93e1143cde77b636193c5 (diff) | |
Fixed instances of hexchat_printf that unsafely used a string parameter as a format string.
Fixes #1153
| -rw-r--r-- | plugins/sysinfo/xsys.c | 4 | ||||
| -rw-r--r-- | plugins/upd/upd.c | 4 |
2 files changed, 4 insertions, 4 deletions
diff --git a/plugins/sysinfo/xsys.c b/plugins/sysinfo/xsys.c index 474729c5..4ab6e873 100644 --- a/plugins/sysinfo/xsys.c +++ b/plugins/sysinfo/xsys.c @@ -750,7 +750,7 @@ sysinfo_cb (char *word[], char *word_eol[], void *userdata) if (!g_ascii_strcasecmp ("HELP", word[2+offset])) { - hexchat_printf (ph, sysinfo_help); + hexchat_printf (ph, "%s", sysinfo_help); return HEXCHAT_EAT_ALL; } else if (!g_ascii_strcasecmp ("LIST", word[2+offset])) @@ -870,7 +870,7 @@ sysinfo_cb (char *word[], char *word_eol[], void *userdata) } else { - hexchat_printf (ph, sysinfo_help); + hexchat_printf (ph, "%s", sysinfo_help); return HEXCHAT_EAT_ALL; } } diff --git a/plugins/upd/upd.c b/plugins/upd/upd.c index 7ebf95bc..6fcf3be9 100644 --- a/plugins/upd/upd.c +++ b/plugins/upd/upd.c @@ -128,7 +128,7 @@ print_version (char *word[], char *word_eol[], void *userdata) if (!g_ascii_strcasecmp ("HELP", word[2])) { - hexchat_printf (ph, upd_help); + hexchat_printf (ph, "%s", upd_help); return HEXCHAT_EAT_HEXCHAT; } else if (!g_ascii_strcasecmp ("SET", word[2])) @@ -200,7 +200,7 @@ print_version (char *word[], char *word_eol[], void *userdata) } else { - hexchat_printf (ph, upd_help); + hexchat_printf (ph, "%s", upd_help); return HEXCHAT_EAT_HEXCHAT; } } |