From ea8f238f04c0477d0071398851c9125857961d44 Mon Sep 17 00:00:00 2001 From: Holger Hans Peter Freyther Date: Thu, 2 Aug 2012 21:26:02 +0200 Subject: vty: Print the string using "%s", string to avoid security issues The Mandriva GCC is more strict about handling format strings, the copyright string might contain escape sequences and then any memory could be read. --- src/vty/vty.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src') diff --git a/src/vty/vty.c b/src/vty/vty.c index e529ee70..eda3699c 100644 --- a/src/vty/vty.c +++ b/src/vty/vty.c @@ -348,7 +348,7 @@ void vty_hello(struct vty *vty) app_name, VTY_NEWLINE, VTY_NEWLINE); if (host.app_info->copyright) - vty_out(vty, host.app_info->copyright); + vty_out(vty, "%s", host.app_info->copyright); if (host.motdfile) { FILE *f; -- cgit v1.2.3