Fix CVE-2008-2149: buffer overflows by limiting the length of the string in sprintf
format string
Closes: #481186 (CVE-2008-2149)
Please note: The WordNet code contains several other occurences of potentially
exploitable functions like strcpy()/strcat()/...  and so even if there are no
known exploits the code needs a full security audit.

--- a/src/wn.c
+++ b/src/wn.c
@@ -206,7 +206,8 @@ static int searchwn(int ac, char *av[])
 		    outsenses += do_search(av[1], optptr->pos, optptr->search,
 					    whichsense, optptr->label);
 	    } else {
-		sprintf(tmpbuf, "wn: invalid search option: %s\n", av[j]);
+		/* Fix CVE-2008-2149: buffer overflows Andreas Tille <tille@debian.org> */
+		sprintf(tmpbuf, "wn: invalid search option: %.200s\n", av[j]);
 		display_message(tmpbuf);
 		errcount++;
 	    }
oszko' selected='selected'>koszko</option>
<option value='koszko-scripts'>koszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1'>refs</a><a class='active' href='/guix/log/etc/kernels-manifest.scm?showmsg=1'>log</a><a href='/guix/tree/etc/kernels-manifest.scm?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1'>tree</a><a href='/guix/commit/etc/kernels-manifest.scm?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1'>commit</a><a href='/guix/diff/etc/kernels-manifest.scm?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/etc/kernels-manifest.scm'>
<input type='hidden' name='id' value='a9e65e0341d5045e425e3cf8d741a3d13cfa35a1'/><input type='hidden' name='showmsg' value='1'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1&amp;showmsg=1'>root</a>/<a href='/guix/log/etc?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1&amp;showmsg=1'>etc</a>/<a href='/guix/log/etc/kernels-manifest.scm?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1&amp;showmsg=1'>kernels-manifest.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/etc/kernels-manifest.scm?id=a9e65e0341d5045e425e3cf8d741a3d13cfa35a1'>Collapse</a>)</th><th class='left'>Author</th></tr>
<tr class='logheader'><td><span title='2023-01-06 00:16:06 -0500'>2023-01-06</span></td><td class='logsubject'><a href='/guix/commit/etc/kernels-manifest.scm?id=8be0a97a8139fdd4d196092008b98668f1a8b2bb'>maint: Add missing modules to the kernel manifest.</a></td><td>Leo Famulari</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* etc/kernels-manifest.scm: Add missing modules.


</td></tr>
<tr class='logheader'><td><span title='2022-12-29 13:51:58 -0500'>2022-12-29</span></td><td class='logsubject'><a href='/guix/commit/etc/kernels-manifest.scm?id=d07d6ea31a883d395d692483d84e7797b4c2ce0f'>maint: Add a manifest for everything related to linux-libre.</a></td><td>Leo Famulari</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* etc/kernels-manifest.scm: New file.
* Makefile.am (EXTRA_DIST): Add it.


</td></tr>

Age	Commit message (Collapse)	Author
2023-01-06	maint: Add missing modules to the kernel manifest.	Leo Famulari
	* etc/kernels-manifest.scm: Add missing modules.
2022-12-29	maint: Add a manifest for everything related to linux-libre.	Leo Famulari
	* etc/kernels-manifest.scm: New file. * Makefile.am (EXTRA_DIST): Add it.