Fix a format string vulnerability if MALLOC_LOG is set.

2025-07-01 11:32:48 -05:00 · 2015-05-01 15:55:37 +02:00
parent 6a70f944f6
commit e443fd3a77
1 changed files with 2 additions and 2 deletions
--- a/misc.c
+++ b/misc.c
@ -755,7 +755,7 @@ void *safemalloc(size_t n, size_t size)
 #else
 	strcpy(str, "Out of memory!");
 #endif
-	modalfatalbox(str);
+	modalfatalbox("%s", str);
    }
 #ifdef MALLOC_LOG
    if (fp)
@ -797,7 +797,7 @@ void *saferealloc(void *ptr, size_t n, size_t size)
 #else
 	strcpy(str, "Out of memory!");
 #endif
-	modalfatalbox(str);
+	modalfatalbox("%s", str);
    }
 #ifdef MALLOC_LOG
    if (fp)