misc: avoid potential buffer overflows

author Munkyu Im <munkyu.im@samsung.com>

Tue, 11 Apr 2017 14:34:35 +0000 (23:34 +0900)

committer SeokYeon Hwang <syeon.hwang@samsung.com>

Thu, 20 Apr 2017 11:26:33 +0000 (04:26 -0700)
author Munkyu Im <munkyu.im@samsung.com>
Tue, 11 Apr 2017 14:34:35 +0000 (23:34 +0900)
committer SeokYeon Hwang <syeon.hwang@samsung.com>
Thu, 20 Apr 2017 11:26:33 +0000 (04:26 -0700)
diff --git a/src/default_plugin_appcmd.c b/src/default_plugin_appcmd.c

index 643fb77..62a0217 100644 (file)
--- a/src/default_plugin_appcmd.c
+++ b/src/default_plugin_appcmd.c
@@ -300,7 +300,7 @@ static void appcmd_receiver_debugwebapp(int fd_in, int fd_out)
  
          D("debug webapp output : %s\n", buf);
          sub_str = strstr(buf, "port: ");
-        if (sub_str != NULL && sscanf(sub_str, "port: %s", port_str) == 1) {
+        if (sub_str != NULL && sscanf(sub_str, "port: %31s", port_str) == 1) {
              snprintf(out_buf, sizeof(out_buf), "\n%s:%s\n", MESSAGE_PREFIX_APPCMD_RETURN, port_str);
              writex(fd_out, out_buf, strlen(out_buf)+1);
              break;
@@ -411,13 +411,13 @@ static void appcmd_receiver_appinfo(int fd_in, int fd_out)
  
          if (!strncmp(buf, "Appid: ", 7)) {
              memset(appid, 0, sizeof(appid));
-            sscanf(buf, "Appid: %s", appid);
+            sscanf(buf, "Appid: %127s", appid);
  
              snprintf(out_buf+out_ptr, sizeof(out_buf)-out_ptr, ":%s", appid);
              out_ptr += strlen(appid)+1;
          } else if (!strncmp(buf, "Apptype: ", 9)) {
              memset(apptype, 0, sizeof(apptype));
-            sscanf(buf, "Apptype: %s", apptype);
+            sscanf(buf, "Apptype: %127s", apptype);
  
              snprintf(out_buf+out_ptr, sizeof(out_buf)-out_ptr, ":%s", apptype);
              out_ptr += strlen(apptype)+1;
author	Munkyu Im <munkyu.im@samsung.com>
	Tue, 11 Apr 2017 14:34:35 +0000 (23:34 +0900)
committer	SeokYeon Hwang <syeon.hwang@samsung.com>
	Thu, 20 Apr 2017 11:26:33 +0000 (04:26 -0700)