[ros-diffs] [navaraf] 12894: Change vsprint to _vsnprintf in PrintString to prevent potential buffer overflows. Patch by Uwe Matthaeus <uwe.matthaeus@guehring.de>.

8 Jan 2005

Change vsprint to _vsnprintf in PrintString to prevent potential buffer
overflows. Patch by Uwe Matthaeus &lt;uwe.matthaeus(a)guehring.de&gt;de>.
Modified: trunk/reactos/ntoskrnl/kd/kdebug.c
  _____  

Modified: trunk/reactos/ntoskrnl/kd/kdebug.c

--- trunk/reactos/ntoskrnl/kd/kdebug.c	2005-01-08 22:08:29 UTC (rev
12893)
+++ trunk/reactos/ntoskrnl/kd/kdebug.c	2005-01-08 23:36:03 UTC (rev
12894)
@@ -60,7 +60,8 @@

   va_list ap;
 
   va_start(ap, fmt);
-  vsprintf(buffer, fmt, ap);
+  _vsnprintf(buffer, sizeof(buffer) - 1, fmt, ap);
+  buffer[sizeof(buffer) - 1] = 0;
   va_end(ap);
 
   HalDisplayString(buffer);



    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

[ros-diffs] [navaraf] 12894: Change vsprint to _vsnprintf in PrintString to prevent potential buffer overflows. Patch by Uwe Matthaeus <uwe.matthaeus@guehring.de>.