diff options
author | Aris Adamantiadis <aris@0xbadc0de.be> | 2009-06-17 23:42:07 +0200 |
---|---|---|
committer | Andreas Schneider <mail@cynapses.org> | 2009-06-20 11:25:23 +0200 |
commit | 39c7e3c7dd7a00ce9e32cc29a8fc1d8b58ddc1a7 (patch) | |
tree | f62307205116257436c9af602c5fd178b83276dc | |
parent | 387348968842dce1fd5da139fc858866c10830e2 (diff) | |
download | libssh-39c7e3c7dd7a00ce9e32cc29a8fc1d8b58ddc1a7.tar.gz libssh-39c7e3c7dd7a00ce9e32cc29a8fc1d8b58ddc1a7.tar.xz libssh-39c7e3c7dd7a00ce9e32cc29a8fc1d8b58ddc1a7.zip |
Fixed potential format string attacks
Potential format string attacks on error reporting in channels.c
-rw-r--r-- | libssh/channels.c | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/libssh/channels.c b/libssh/channels.c index 6bf68446..d637ee1c 100644 --- a/libssh/channels.c +++ b/libssh/channels.c @@ -315,7 +315,7 @@ static void channel_rcv_change_window(SSH_SESSION *session) { channel = channel_from_msg(session); if (channel == NULL) { - ssh_log(session, SSH_LOG_FUNCTIONS, ssh_get_error(session)); + ssh_log(session, SSH_LOG_FUNCTIONS, "%s", ssh_get_error(session)); } rc = buffer_get_u32(session->in_buffer, &bytes); @@ -413,7 +413,7 @@ static void channel_rcv_eof(SSH_SESSION *session) { channel = channel_from_msg(session); if (channel == NULL) { - ssh_log(session, SSH_LOG_FUNCTIONS, ssh_get_error(session)); + ssh_log(session, SSH_LOG_FUNCTIONS, "%s", ssh_get_error(session)); leave_function(); return; } @@ -435,7 +435,7 @@ static void channel_rcv_close(SSH_SESSION *session) { channel = channel_from_msg(session); if (channel == NULL) { - ssh_log(session, SSH_LOG_FUNCTIONS, ssh_get_error(session)); + ssh_log(session, SSH_LOG_FUNCTIONS, "%s", ssh_get_error(session)); leave_function(); return; } @@ -477,7 +477,7 @@ static void channel_rcv_request(SSH_SESSION *session) { channel = channel_from_msg(session); if (channel == NULL) { - ssh_log(session, SSH_LOG_FUNCTIONS, ssh_get_error(session)); + ssh_log(session, SSH_LOG_FUNCTIONS,"%s", ssh_get_error(session)); leave_function(); return; } |