head	1.1;
access;
symbols
	RELEASE_8_3_0:1.1
	RELEASE_9_0_0:1.1
	RELEASE_7_4_0:1.1
	RELEASE_8_2_0:1.1
	RELEASE_6_EOL:1.1
	RELEASE_8_1_0:1.1
	RELEASE_7_3_0:1.1
	RELEASE_8_0_0:1.1
	RELEASE_7_2_0:1.1
	RELEASE_7_1_0:1.1
	RELEASE_6_4_0:1.1
	RELEASE_5_EOL:1.1
	RELEASE_7_0_0:1.1
	RELEASE_6_3_0:1.1
	PRE_XORG_7:1.1
	RELEASE_4_EOL:1.1
	RELEASE_6_2_0:1.1
	RELEASE_6_1_0:1.1
	RELEASE_5_5_0:1.1
	RELEASE_6_0_0:1.1
	RELEASE_5_4_0:1.1
	RELEASE_4_11_0:1.1
	RELEASE_5_3_0:1.1
	RELEASE_4_10_0:1.1
	RELEASE_5_2_1:1.1
	RELEASE_5_2_0:1.1
	RELEASE_4_9_0:1.1
	RELEASE_5_1_0:1.1
	RELEASE_4_8_0:1.1
	RELEASE_5_0_0:1.1
	RELEASE_4_7_0:1.1;
locks; strict;
comment	@# @;


1.1
date	2002.06.07.01.16.21;	author kris;	state Exp;
branches;
next	;


desc
@@


1.1
log
@Fix a format string vulnerability which appears to be exploitable, and
bump PORTREVISION.
@
text
@--- fakebo.c.orig	Thu Jun  6 18:13:21 2002
+++ fakebo.c	Thu Jun  6 18:13:31 2002
@@@@ -457,8 +457,8 @@@@
 {
 	static char msg[] = "Warning: SIGHUP received, but config re-read not yet implemented!\n";
 
-	logprintf(TRUE, msg);
-	syslogprintf(msg);
+	logprintf(TRUE, "%s", msg);
+	syslogprintf("%s", msg);
 }
 
 #endif
@
