format string protection/clean up (CVE-2007-1463, CVE-2007-1464)

(bzr r2720)
author: Kees Cook <kees@outflux.net> 2007-03-20 17:16:36 +0000
committer: keescook <keescook@users.sourceforge.net> 2007-03-20 17:16:36 +0000
commit: 4687a1c9ffe0d1d3f6ea01f360faa542a5b6491c (patch)
tree: 734a4d35a4e7b90593ae86a6c9006e58ce23d7d1 /src/libcroco
parent: patch by cilix42 for bug 1671665 (diff)
download: inkscape-4687a1c9ffe0d1d3f6ea01f360faa542a5b6491c.tar.gz
inkscape-4687a1c9ffe0d1d3f6ea01f360faa542a5b6491c.zip
1 files changed, 5 insertions, 5 deletions
diff --git a/src/libcroco/cr-statement.c b/src/libcroco/cr-statement.c
index 501741c37..40df49878 100644
--- a/src/libcroco/cr-statement.c
+++ b/src/libcroco/cr-statement.c
@@ -2432,7 +2432,7 @@ cr_statement_dump_ruleset (CRStatement * a_this, FILE * a_fp, glong a_indent)
         g_return_if_fail (a_fp && a_this);
         gchar *str = cr_statement_ruleset_to_string (a_this, a_indent);
         if (str) {
-                fprintf (a_fp, str);
+                fprintf (a_fp, "%s", str);
                 g_free (str);
                 str = NULL;
         }
@@ -2475,7 +2475,7 @@ cr_statement_dump_charset (CRStatement * a_this, FILE * a_fp, gulong a_indent)
         gchar *str = cr_statement_charset_to_string (a_this,
                                               a_indent) ;
         if (str) {
-                fprintf (a_fp, str) ;
+                fprintf (a_fp, "%s", str) ;
                 g_free (str) ;
                 str = NULL ;
         }
@@ -2497,7 +2497,7 @@ cr_statement_dump_page (CRStatement * a_this, FILE * a_fp, gulong a_indent)
 
         gchar *str = cr_statement_at_page_rule_to_string (a_this, a_indent) ;
         if (str) {
-                fprintf (a_fp, str);
+                fprintf (a_fp, "%s", str);
                 g_free (str) ;
                 str = NULL ; 
         }
@@ -2520,7 +2520,7 @@ cr_statement_dump_media_rule (CRStatement * a_this,
 
         str = cr_statement_media_rule_to_string (a_this, a_indent) ;
         if (str) {
-                fprintf (a_fp, str) ;
+                fprintf (a_fp, "%s", str) ;
                 g_free (str) ;
                 str = NULL ;
         }
@@ -2543,7 +2543,7 @@ cr_statement_dump_import_rule (CRStatement * a_this, FILE * a_fp,
 
         str = cr_statement_import_rule_to_string (a_this, a_indent) ;
         if (str) {
-                fprintf (a_fp, str) ;
+                fprintf (a_fp, "%s", str) ;
                 g_free (str) ;
                 str = NULL ;
         }
author	Kees Cook <kees@outflux.net>	2007-03-20 17:16:36 +0000
committer	keescook <keescook@users.sourceforge.net>	2007-03-20 17:16:36 +0000
commit	4687a1c9ffe0d1d3f6ea01f360faa542a5b6491c (patch)
tree	734a4d35a4e7b90593ae86a6c9006e58ce23d7d1 /src/libcroco
parent	patch by cilix42 for bug 1671665 (diff)
download	inkscape-4687a1c9ffe0d1d3f6ea01f360faa542a5b6491c.tar.gz inkscape-4687a1c9ffe0d1d3f6ea01f360faa542a5b6491c.zip