[Libreoffice] [PATCH] security issue: using an un-sanitized string as format of a fprintf
cedric.bosdonnat.ooo at free.fr
Mon Oct 4 01:19:51 PDT 2010
On Sun, 2010-10-03 at 02:02 -0500, Norbert Thiebaud wrote:
> security issue: using an un-sanitized string as format of a fprintf
> the argument of fprintf, from aSrsName, come from a command line.
> It can contain %s or any other kind of formatting instruction that
> could be use to do evil things at run-time
Pushed the patch ins libs-gui, thanks for it.
More information about the LibreOffice