[packages/sgml-tools] - fixed format string errors

Thu Jan 1 19:30:15 CET 2015

commit 47c995180e28aa9aedbb81e01644842898057f4f
Author: Jan Rękorajski <baggins at pld-linux.org>
Date:   Thu Jan 1 18:25:52 2015 +0000

    - fixed format string errors

 format-security.patch | 44 ++++++++++++++++++++++++++++++++++++++++++++
 sgml-tools.spec       |  2 ++
 2 files changed, 46 insertions(+)
---

diff --git a/sgml-tools.spec b/sgml-tools.spec
index 45eca42..ce0691b 100644
--- a/sgml-tools.spec
+++ b/sgml-tools.spec
@@ -22,6 +22,7 @@ Patch4:		%{name}-manfix.patch
 Patch5:		%{name}-datadir.patch
 Patch6:		%{name}-sgml-path.patch
 Patch7:		%{name}-posix.patch
+Patch8:		format-security.patch
 URL:		http://www.sgmltools.org/
 BuildRequires:	autoconf
 BuildRequires:	flex
@@ -105,6 +106,7 @@ sgmls - parser sprawdzający poprawność SGML.
 %patch5 -p1
 %patch6 -p1
 %patch7 -p1
+%patch8 -p1
 
 %build
 cd sgmls-1.1
diff --git a/format-security.patch b/format-security.patch
new file mode 100644
index 0000000..d4731e3
--- /dev/null
+++ b/format-security.patch
@@ -0,0 +1,44 @@
+--- sgml-tools-1.0.9/sgmls-1.1/sgmlmsg.c~	1996-12-02 11:16:26.000000000 +0000
++++ sgml-tools-1.0.9/sgmls-1.1/sgmlmsg.c	2015-01-01 18:24:30.424156231 +0000
+@@ -253,7 +253,7 @@
+ 		    }
+ 		    else
+ 			 middle = 1;
+-		    xfprintf(efp, getheader(HDRPFX));
++		    xfprintf(efp, "%s", getheader(HDRPFX));
+ 		    xfprintf(efp, getheader(HDRLOC), ioflid(loc.fcb),
+ 			     loc.ename, loc.rcnt, loc.ccnt);
+ 	       }
+@@ -326,19 +326,19 @@
+ 	  xfprintf(efp, getheader(HDRMODE), parmbuf);
+ 	  switch (loc.curchar) {
+ 	  case EOFCHAR:
+-	       xfprintf(efp, getheader(HDREOF));
++	       xfprintf(efp, "%s", getheader(HDREOF));
+ 	       break;
+ 	  case RSCHAR:
+-	       xfprintf(efp, getheader(HDRRS));
++	       xfprintf(efp, "%s", getheader(HDRRS));
+ 	       break;
+ 	  case RECHAR:
+-	       xfprintf(efp, getheader(HDRRE));
++	       xfprintf(efp, "%s", getheader(HDRRE));
+ 	       break;
+ 	  case DELNONCH:
+ 	       xfprintf(efp, getheader(HDRCTL), UNSHIFTNON(loc.nextchar));
+ 	       break;
+ 	  case EOS:
+-	       xfprintf(efp, getheader(HDREE));
++	       xfprintf(efp, "%s", getheader(HDREE));
+ 	       break;
+ 	  case EOBCHAR:
+ 	       break;
+@@ -393,7 +393,7 @@
+      if (!gi)
+ 	  return;
+      spaces(efp, indent);
+-     xfprintf(efp, getheader(HDRELT));
++     xfprintf(efp, "%s", getheader(HDRELT));
+      do {
+ 	  fprintf(efp, " %s", gi);
+ 	  gi = getgi(++i);
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/sgml-tools.git/commitdiff/f218200919f7858f02094d22c67454084c4030f5

