steffen
/
bomberclone
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

fixed out of bound write in sound.c

Browse Source
master
Steffen 3 years ago
parent 5387d04721
commit 648d51d13f
3 changed files with 19 additions and 5 deletions
Show Stats Download Patch File Download Diff File

9
.gitignore vendored
Unescape View File

@ -1,6 +1,15 @@
src/.deps/
src/bomberclone
stamp-h1
config.status
*.o
config.log
config.h
Makefile
.cproject
.project
.settings/
*.cache/
Makefile.in
aclocal.m4
compile

4
ChangeLog
Unescape View File

@ -1,5 +1,9 @@
$Id: ChangeLog,v 1.137 2015/07/10 21:59:37 steffen Exp $
08.05.2022: fixing possible out of buffer write errors
- fixed: sound.c had a possible out of buffer write error do to the
usage of sprintf reading two buffers each of the same as the destinations buffer.
10.07.2015: serval patches from Peter Spiess-Knafl applied
- changed: enter key on the numpad works now also in menus

11
src/sound.c
Unescape View File

@ -116,7 +116,8 @@ void
snd_load (char *tilesetname)
{
#if HAVE_SDL_MIXER
char fullname[LEN_PATHFILENAME];
#define FULLNAMELEN (LEN_PATHFILENAME+2*LEN_FILENAME)
char fullname[FULLNAMELEN];
char filename[LEN_FILENAME];
_direntry *destart, *de, *desel;
int i, max, sel;
@ -138,9 +139,9 @@ snd_load (char *tilesetname)
}
/* try loading the sample from the tileset or the default */
sprintf (fullname, "%s/tileset/%s/%s", bman.datapath, tilesetname, filename);
snprintf (fullname, FULLNAMELEN, "%s/tileset/%s/%s", bman.datapath, tilesetname, filename);
if ((snd.sample[i] = Mix_LoadWAV (fullname)) == NULL) {
sprintf (fullname, "%s/tileset/default/%s", bman.datapath, filename);
snprintf (fullname, FULLNAMELEN, "%s/tileset/default/%s", bman.datapath, filename);
if ((snd.sample[i] = Mix_LoadWAV (fullname)) == NULL)
d_printf ("Couldn't load %s: %s\n", fullname, SDL_GetError ());
}
@ -148,7 +149,7 @@ snd_load (char *tilesetname)
/* random selection of an sound file */
sprintf (fullname, "%s/music", bman.datapath);
snprintf (fullname, FULLNAMELEN, "%s/music", bman.datapath);
desel = destart = s_getdir (fullname);
for (max = 0, de = destart; de != NULL; de = de->next)
@ -164,7 +165,7 @@ snd_load (char *tilesetname)
/* try loading the music from the tileset or the default */
if (desel != NULL) {
sprintf (fullname, "%s/music/%s", bman.datapath, desel->name);
snprintf (fullname, FULLNAMELEN, "%s/music/%s", bman.datapath, desel->name);
if ((snd.music = Mix_LoadMUS (fullname)) == NULL)
d_printf ("Couldn't load %s: %s\n", fullname, SDL_GetError ());
}

Write Preview
Loading…
Cancel
Save