[Cabal] Fwd: results au the audit (sort of)
Luke Schierer
lschiere at users.sf.net
Thu Jan 4 15:47:27 EST 2007
----- Forwarded message from endrazine <endrazine at gmail.com> -----
Date: Thu, 04 Jan 2007 21:41:05 +0100
From: endrazine <endrazine at gmail.com>
To: endrazine <endrazine at gmail.com>, thekingant at users.sourceforge.net
Cc: lschiere at users.sourceforge.net, seanegan at users.sourceforge.net
Subject: results au the audit (sort of)
Hello dear admins,
and happy new year :)
Ok, I've been a bit busy (at the CCC meeting in Berlin), but as I
promessed you, I started an audit of the whole svn tree.
I focussed primarily on missing format strings since those are "easy" to
spot (well, compared to logical errors for instance),
and have a critical impact (namely : possibly remote code execution,
even with grsec/openwall/PaX patches enabled - yeah,
I'm a bit linux biased ;).
Here are the first results : _128_missing_format_strings_ on the whole
svn tree (see below). I am running complementary checks atm,
but if you correct those, you can conseider yourself immune against this
particular kind of flaws ( I use home made tools which
mathematically demonstrate the existence of flaws). Since I'm willing to
correct as much bugs as possible, I didn't spent my time
on looking if any of them is (remotly) exploitable, but, well, you know
the law of large numbers... You definitly should fix them,
which is a trivial work imho.
I am also running checks to determine if the svn tree contains format
strings that are user defined or at least defined at run time
(9051 hits so far, and the test is still running).
The use of popen() and system() is also quite alarming, since it allows
code execution in many cases (eg: when a link is supplied by an attacker
to the user). I'd suggest using fork()/execv*() instead, even if I
couldn't trigger remote execution so far.
Because the code to audit is so big, it will take me quite a time to
check for more bugs (buffer overflows and the memory corruptions -null
pointers,
heap corruption/overflow, etc).
I really hope you find those results interesting, since as you surelly
understand, code auditing is quite time consuming :)
Best regards,
endrazine-
PS: I use flex/bison scanners I wrote especially for this audit, so no
false positives are possible...
______________________Results____________________________
[ Missing format strings ]
Note: We already discussed the "debug" feature. They are probably not
exploitable,
but I suggest you fixed them anyway. Most other hits are related to
printf() or fprintf()
and refer to static strings. Those related to g_strdup_printf() might be
more serious.
--------------------------------------------------------------------------------------------
gaim/branches/soc-2006-file-loggers/console/libgnt/.svn/text-base/gntmain.c.svn-base
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 343
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 347
Missing format string
gaim/branches/soc-2006-file-loggers/console/libgnt/gntmain.c
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 343
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 347
Missing format string
gaim/tags/v2_0_0beta4/console/libgnt/.svn/text-base/gntmain.c.svn-base
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 454
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 458
Missing format string
gaim/tags/v2_0_0beta4/console/libgnt/gntmain.c
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 454
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 458
Missing format string
gaim/tags/v2_0_0beta5/console/libgnt/.svn/text-base/gntwm.c.svn-base
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 351
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 355
Missing format string
gaim/tags/v2_0_0beta5/console/libgnt/gntwm.c
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 351
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 355
Missing format string
gaim/branches/soc-2006-file-loggers/console/libgnt/.svn/text-base/gntmain.c.svn-base
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 343
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 347
Missing format string
gaim/branches/soc-2006-file-loggers/console/libgnt/gntmain.c
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 343
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 347
Missing format string
gaim/tags/v2_0_0beta4/console/libgnt/.svn/text-base/gntmain.c.svn-base
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 454
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 458
Missing format string
gaim/tags/v2_0_0beta4/console/libgnt/gntmain.c
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 454
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 458
Missing format string
gaim/tags/v2_0_0beta5/console/libgnt/.svn/text-base/gntwm.c.svn-base
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 351
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 355
Missing format string
gaim/tags/v2_0_0beta5/console/libgnt/gntwm.c
Vulnerability in : fprintf(file, start) args: 2 instead of 3,
around line: 351
Missing format string
Vulnerability in : fprintf(file, end) args: 2 instead of 3,
around line: 355
Missing format string
-------------------------------------------------------------------------------------------------------------
gaim/tags/v2_0_0beta2/gaim/src/.svn/text-base/gtkmain.c.svn-base
Vulnerability in : fprintf(stderr, segfault_message) args: 2
instead of 3, around line: 151
Missing format string
gaim/tags/v2_0_0beta2/gaim/src/gtkmain.c
Vulnerability in : fprintf(stderr, segfault_message) args: 2
instead of 3, around line: 151
Missing format string
--------------------------------------------------------------------------------------------------------------
gaim/branches/v2_0_0/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/v2_0_0/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-file-loggers/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-file-loggers/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-blist-efficiency/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-blist-efficiency/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/restructure/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/restructure/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/v2_0_0beta3_1/gaim/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/v2_0_0beta3_1/gaim/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-chat-speed/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-chat-speed/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-msnp13/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-msnp13/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-db-logger/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-db-logger/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-certmgr/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/soc-2006-certmgr/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/restructure-v2_0_0/src/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
gaim/branches/restructure-v2_0_0/src/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 91
Missing format string
-------------------------------------------------------------------------------------------------
gaim/branches/gaim-doodle/gaim/src/protocols/sametime/.svn/text-base/sametime.c.svn-base
Vulnerability in : gaim_debug_error(domain, nl) args: 2 instead of 3,
around line: 4867
Missing format string
Vulnerability in : gaim_debug_warning(domain, nl) args: 2 instead of
3, around line: 4870
Missing format string
Vulnerability in : gaim_debug_info(domain, nl) args: 2 instead of 3,
around line: 4873
Missing format string
gaim/branches/gaim-doodle/gaim/src/protocols/sametime/sametime.c
Vulnerability in : gaim_debug_error(domain, nl) args: 2 instead of 3,
around line: 4867
Missing format string
Vulnerability in : gaim_debug_warning(domain, nl) args: 2 instead of
3, around line: 4870
Missing format string
Vulnerability in : gaim_debug_info(domain, nl) args: 2 instead of 3,
around line: 4873
Missing format string
-----------------------------------------------------------------------------------------------------------------
gaim/branches/soc-2006-chat-speed/src/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 43
Missing format string
gaim/branches/soc-2006-chat-speed/src/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 43
Missing format string
gaim/branches/soc-2006-file-loggers/src/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 37
Missing format string
gaim/branches/soc-2006-file-loggers/src/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 37
Missing format string
gaim/branches/soc-2006-blist-efficiency/src/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 43
Missing format string
gaim/branches/soc-2006-blist-efficiency/src/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 43
Missing format string
gaim/branches/restructure/src/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 42
Missing format string
gaim/branches/restructure/src/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 42
Missing format string
gaim/branches/soc-2006-certmgr/src/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 43
Missing format string
gaim/branches/soc-2006-certmgr/src/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 43
Missing format string
gaim/tags/v2_0_0beta4/libgaim/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 38
Missing format string
gaim/tags/v2_0_0beta4/libgaim/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 38
Missing format string
gaim/tags/v2_0_0beta5/libgaim/protocols/qq/.svn/text-base/qq_proxy.c.svn-base
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 38
Missing format string
gaim/tags/v2_0_0beta5/libgaim/protocols/qq/qq_proxy.c
Vulnerability in : gaim_debug(GAIM_DEBUG_INFO, desc, buf1)
args: 3 instead of 4, around line: 38
Missing format string
------------------------------------------------------------------------------------------------------------------
gaim/trunk/libgaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/trunk/libgaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/v2_0_0beta3_1/gaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/v2_0_0beta3_1/gaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-chat-speed/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-chat-speed/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/v2_0_0/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/v2_0_0/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-file-loggers/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-file-loggers/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-blist-efficiency/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-blist-efficiency/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/restructure/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/restructure/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-msnp13/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-msnp13/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-db-logger/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-db-logger/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-certmgr/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/soc-2006-certmgr/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/restructure-v2_0_0/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/branches/restructure-v2_0_0/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta3_1/gaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta3_1/gaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta1/gaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta1/gaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta2/gaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta2/gaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta3/gaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta3/gaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta4/libgaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta4/libgaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta5/libgaim/plugins/mono/loader/.svn/text-base/debug-glue.c.svn-base
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
gaim/tags/v2_0_0beta5/libgaim/plugins/mono/loader/debug-glue.c
Vulnerability in : gaim_debug(type, ccat, cstr) args: 3 instead of
4, around line: 12
Missing format string
------------------------------------------------------------------------------------------------------
gaim/branches/gaim-doodle/gaim/src/protocols/sametime/meanwhile/.svn/text-base/mw_debug.c.svn-base
Vulnerability in : g_debug(str->str) args: 1 instead of 2, around line: 55
Missing format string
Vulnerability in : g_debug(str->str) args: 1 instead of 2, around
line: 92
Missing format string
gaim/branches/gaim-doodle/gaim/src/protocols/sametime/meanwhile/mw_debug.c
Vulnerability in : g_debug(str->str) args: 1 instead of 2, around line: 55
Missing format string
Vulnerability in : g_debug(str->str) args: 1 instead of 2, around
line: 92
Missing format string
--------------------------------------------------------------------------------------------------------
gaim/branches/soc-2006-chat-speed/console/libgnt/.svn/text-base/gntentry.c.svn-base
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 111
Missing format string
gaim/branches/soc-2006-chat-speed/console/libgnt/gntentry.c
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 111
Missing format string
gaim/branches/soc-2006-file-loggers/console/libgnt/.svn/text-base/gntentry.c.svn-base
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 302
Missing format string
gaim/branches/soc-2006-file-loggers/console/libgnt/gntentry.c
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 302
Missing format string
gaim/branches/soc-2006-blist-efficiency/console/libgnt/.svn/text-base/gntentry.c.svn-base
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 111
Missing format string
gaim/branches/soc-2006-blist-efficiency/console/libgnt/gntentry.c
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 111
Missing format string
gaim/branches/restructure/console/libgnt/.svn/text-base/gntentry.c.svn-base
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 122
Missing format string
gaim/branches/restructure/console/libgnt/gntentry.c
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 122
Missing format string
gaim/branches/soc-2006-certmgr/console/libgnt/.svn/text-base/gntentry.c.svn-base
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 111
Missing format string
gaim/branches/soc-2006-certmgr/console/libgnt/gntentry.c
Vulnerability in : g_strdup_printf(entry->start) args: 1 instead of 2,
around line: 111
Missing format string
-----------------------------------------------------------------------------------------------------
gaim/tags/v2_0_0beta5/gtk/win32/.svn/text-base/win_gaim.c.svn-base
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 114
Missing format string
Vulnerability in : printf(errbuf) args: 1 instead of 2, around
line: 507
Missing format string
Vulnerability in : printf(errbuf) args: 1 instead of 2, around
line: 535
Missing format string
gaim/tags/v2_0_0beta5/gtk/win32/win_gaim.c
Vulnerability in : printf(aspelldir) args: 1 instead of 2,
around line: 114
Missing format string
Vulnerability in : printf(errbuf) args: 1 instead of 2, around
line: 507
Missing format string
Vulnerability in : printf(errbuf) args: 1 instead of 2, around
line: 535
Missing format string
-------------------------------------------------------------------------------------------------------
gaim/tags/v2_0_0beta1/gaim/src/mediastreamer/.svn/text-base/mediastream.c.svn-base
Vulnerability in : printf(usage) args: 1 instead of 2, around line: 53
Missing format string
Vulnerability in : printf(usage) args: 1 instead of 2, around
line: 64
Missing format string
gaim/tags/v2_0_0beta1/gaim/src/mediastreamer/mediastream.c
Vulnerability in : printf(usage) args: 1 instead of 2, around line: 53
Missing format string
Vulnerability in : printf(usage) args: 1 instead of 2, around
line: 64
Missing format string
gaim/tags/v2_0_0beta2/gaim/src/mediastreamer/.svn/text-base/mediastream.c.svn-base
Vulnerability in : printf(usage) args: 1 instead of 2, around line: 53
Missing format string
Vulnerability in : printf(usage) args: 1 instead of 2, around
line: 64
Missing format string
gaim/tags/v2_0_0beta2/gaim/src/mediastreamer/mediastream.c
Vulnerability in : printf(usage) args: 1 instead of 2, around line: 53
Missing format string
Vulnerability in : printf(usage) args: 1 instead of 2, around
line: 64
Missing format string
----------------------------------------------------------------------------------------------------------
----- End forwarded message -----
More information about the Cabal
mailing list