2018-07-23 Fred Gleason <fredg@paravelsystems.com>

* Fixed a buffer overflow vulnerability in the 'RDWaveFile' class.
2025-06-03 17:42:32 +02:00 · 2018-07-23 17:39:03 +00:00 · 2018-07-23 17:39:03 +00:00 · c722e4fe09
commit c722e4fe09
parent 59c19a9e17
2 changed files with 4 additions and 4 deletions
--- a/2
+++ b/2
@ -17212,3 +17212,5 @@
 	* Cleaned up CDDA calls to ensure UTF-8 compatibility.
 2018-07-23 Fred Gleason <fredg@paravelsystems.com>
 	* Cleaned up RDConf calls to ensure UTF-8 compatibility.
+2018-07-23 Fred Gleason <fredg@paravelsystems.com>
+	* Fixed a buffer overflow vulnerability in the 'RDWaveFile' class.
--- a/lib/rdwavefile.cpp
+++ b/lib/rdwavefile.cpp
@ -4220,10 +4220,8 @@ bool RDWaveFile::MakeCart(unsigned ptr_offset)
 	  cart_end_time.hour(),
 	  cart_end_time.minute(),
 	  cart_end_time.second());
-  sprintf((char *)cart_chunk_data+488,"%s",
-	  (const char *)PACKAGE);
-  sprintf((char *)cart_chunk_data+552,"%s",
-	  (const char *)VERSION);
+  snprintf((char *)cart_chunk_data+488,64,"%s",PACKAGE);
+  snprintf((char *)cart_chunk_data+552,64,"%s",VERSION);
  if(!cart_user_def.isEmpty()) {
    sprintf((char *)cart_chunk_data+616,"%s",
 	    (const char *)cart_user_def.left(64));