(svn r2899) -Fix: Several format string vulnerabilities and buffer overflows in the network code

2005-08-28 12:24:57 +00:00
parent de4f69d42e
commit f02b1f2967
5 changed files with 13 additions and 13 deletions
--- a/texteff.c
+++ b/texteff.c
@@ -62,7 +62,7 @@ void CDECL AddTextMessage(uint16 color, uint8 duration, const char *message, ...
 	int length;

 	va_start(va, message);
-	vsprintf(buf, message, va);
+	vsnprintf(buf, lengthof(buf), message, va);
 	va_end(va);

 	/* Special color magic */