diff options
author | rfelker <rfelker@b3059339-0415-0410-9bf9-f77b7e298cf2> | 2003-09-25 00:36:04 +0000 |
---|---|---|
committer | rfelker <rfelker@b3059339-0415-0410-9bf9-f77b7e298cf2> | 2003-09-25 00:36:04 +0000 |
commit | aee0faef0a5b0b7442a008f485aeedc65708e8fe (patch) | |
tree | e0dc4a6e373b648963abef0baa25a4c116a20851 /libmpdemux/asf_streaming.c | |
parent | c3a0340aa86bc94ed69deda720b16188aade09a7 (diff) | |
download | mpv-aee0faef0a5b0b7442a008f485aeedc65708e8fe.tar.bz2 mpv-aee0faef0a5b0b7442a008f485aeedc65708e8fe.tar.xz |
simple fix for buffer overflow (remotely exploitable). feel free to
commit a better fix if you don't like it.
git-svn-id: svn://svn.mplayerhq.hu/mplayer/trunk@10940 b3059339-0415-0410-9bf9-f77b7e298cf2
Diffstat (limited to 'libmpdemux/asf_streaming.c')
-rw-r--r-- | libmpdemux/asf_streaming.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/libmpdemux/asf_streaming.c b/libmpdemux/asf_streaming.c index 8d3886d3b8..86e178ac33 100644 --- a/libmpdemux/asf_streaming.c +++ b/libmpdemux/asf_streaming.c @@ -502,11 +502,11 @@ asf_http_request(streaming_ctrl_t *streaming_ctrl) { return NULL; } http_set_uri( http_hdr, server_url->url ); - sprintf( str, "Host: %s:%d", server_url->hostname, server_url->port ); + sprintf( str, "Host: %.220s:%d", server_url->hostname, server_url->port ); url_free( server_url ); } else { http_set_uri( http_hdr, url->file ); - sprintf( str, "Host: %s:%d", url->hostname, url->port ); + sprintf( str, "Host: %.220s:%d", url->hostname, url->port ); } http_set_field( http_hdr, str ); |