fix unbounded write of sprintf

Buffer write operations that do not control the length of data written may overflow. Fix by replacing sprintf() with snprintf().
2026-02-16 02:20:42 +00:00 · 2024-03-23 22:03:02 -04:00
parent 014af67397
commit 274d3db34d
2 changed files with 5 additions and 5 deletions
--- a/libgamestream/http.c
+++ b/libgamestream/http.c
@@ -51,10 +51,10 @@ int http_init(const char* keyDirectory, int logLevel) {
    return GS_FAILED;

  char certificateFilePath[4096];
-  sprintf(certificateFilePath, "%s/%s", keyDirectory, CERTIFICATE_FILE_NAME);
+  snprintf(certificateFilePath, sizeof(certificateFilePath), "%s/%s", keyDirectory, CERTIFICATE_FILE_NAME);

  char keyFilePath[4096];
-  sprintf(&keyFilePath[0], "%s/%s", keyDirectory, KEY_FILE_NAME);
+  snprintf(keyFilePath, sizeof(keyFilePath), "%s/%s", keyDirectory, KEY_FILE_NAME);

  curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L);
  curl_easy_setopt(curl, CURLOPT_SSLENGINE_DEFAULT, 1L);