Prevent buffer overflow in format_cmd() by properly tracking maximum

buffer size. Reported by: Lionnel CHAPTAL <Lionnel.Chaptal@IPricot.com> MFC after: 1 week
author: jkh <jkh@FreeBSD.org> 2003-01-06 07:39:02 +0000
committer: jkh <jkh@FreeBSD.org> 2003-01-06 07:39:02 +0000
commit: 99a8dbd2abcc4a5b3e91176537e4a2539317c506 (patch)
tree: 18330404214398e2f4f18fe73650c7a1a793b318 /usr.sbin/pkg_install/add
parent: a1b0e44458dd92011644d1ef5627aa3d99b04fb3 (diff)
download: FreeBSD-src-99a8dbd2abcc4a5b3e91176537e4a2539317c506.zip
FreeBSD-src-99a8dbd2abcc4a5b3e91176537e4a2539317c506.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/usr.sbin/pkg_install/add/extract.c b/usr.sbin/pkg_install/add/extract.c
index 83f46e3..f35cce2 100644
--- a/usr.sbin/pkg_install/add/extract.c
+++ b/usr.sbin/pkg_install/add/extract.c
@@ -223,7 +223,7 @@ extract_plist(const char *home, Package *pkg)
 		errx(2, "%s: no directory specified for '%s' command",
 		    __func__, p->name);
 	    }
-	    format_cmd(cmd, p->name, Directory, last_file);
+	    format_cmd(cmd, FILENAME_MAX, p->name, Directory, last_file);
 	    PUSHOUT(Directory);
 	    if (Verbose)
 		printf("extract: execute '%s'\n", cmd);
author	jkh <jkh@FreeBSD.org>	2003-01-06 07:39:02 +0000
committer	jkh <jkh@FreeBSD.org>	2003-01-06 07:39:02 +0000
commit	99a8dbd2abcc4a5b3e91176537e4a2539317c506 (patch)
tree	18330404214398e2f4f18fe73650c7a1a793b318 /usr.sbin/pkg_install/add
parent	a1b0e44458dd92011644d1ef5627aa3d99b04fb3 (diff)
download	FreeBSD-src-99a8dbd2abcc4a5b3e91176537e4a2539317c506.zip FreeBSD-src-99a8dbd2abcc4a5b3e91176537e4a2539317c506.tar.gz