Fix CVE-2008-2149: buffer overflows by limiting the length of the string in sprintf
format string
Closes: #481186 (CVE-2008-2149)
Please note: The WordNet code contains several other occurences of potentially
exploitable functions like strcpy()/strcat()/...  and so even if there are no
known exploits the code needs a full security audit.

--- a/src/wn.c
+++ b/src/wn.c
@@ -206,7 +206,8 @@ static int searchwn(int ac, char *av[])
 		    outsenses += do_search(av[1], optptr->pos, optptr->search,
 					    whichsense, optptr->label);
 	    } else {
-		sprintf(tmpbuf, "wn: invalid search option: %s\n", av[j]);
+		/* Fix CVE-2008-2149: buffer overflows Andreas Tille <tille@debian.org> */
+		sprintf(tmpbuf, "wn: invalid search option: %.200s\n", av[j]);
 		display_message(tmpbuf);
 		errcount++;
 	    }
scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>refs</a><a class='active' href='/guix/log/gnu/home.scm'>log</a><a href='/guix/tree/gnu/home.scm?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>tree</a><a href='/guix/commit/gnu/home.scm?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>commit</a><a href='/guix/diff/gnu/home.scm?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/home.scm'>
<input type='hidden' name='id' value='e042567145235a659dd84a8c3f3d4825ed800a8e'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>root</a>/<a href='/guix/log/gnu?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>gnu</a>/<a href='/guix/log/gnu/home.scm?id=e042567145235a659dd84a8c3f3d4825ed800a8e'>home.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/home.scm?id=e042567145235a659dd84a8c3f3d4825ed800a8e&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2023-03-20 09:14:23 +0400'>2023-03-20</span></td><td><a href='/guix/commit/gnu/home.scm?id=1f36534c7e8f2325bff4df5d37ecc811dc63fc38'>home: 'home-environment-with-provenance' uses the HE location info.</a><span class='msg-avail'>...</span></td><td>Sergey Trofimov</td></tr>
<tr><td><span title='2023-03-13 16:41:34 +0400'>2023-03-13</span></td><td><a href='/guix/commit/gnu/home.scm?id=377c8143e7cd5e3bf3e1e8d53ba443f91c88239c'>home: Export home-environment-packages.</a><span class='msg-avail'>...</span></td><td>Sergey Trofimov</td></tr>
<tr><td><span title='2022-08-19 18:55:41 +0300'>2022-08-19</span></td><td><a href='/guix/commit/gnu/home.scm?id=e60ba7eb6dd3d5847f7111f1a2ea33492b12cbc8'>home: Fix docstring.</a><span class='msg-avail'>...</span></td><td>Andrew Tropin</td></tr>
<tr><td><span title='2022-08-01 00:02:04 +0200'>2022-08-01</span></td><td><a href='/guix/commit/gnu/home.scm?id=61db74a687e36e842077c5c2f4b2e2c7afcd814a'>home: Add 'home-generation-base'.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2022-07-17 02:00:00 +0200'>2022-07-17</span></td><td><a href='/guix/commit/gnu/home.scm?id=670818a4049edb8a77a5b596fbc7558bde57165c'>Revert "home: Add 'home-generation-base'."</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2022-07-23 00:39:55 +0200'>2022-07-23</span></td><td><a href='/guix/commit/gnu/home.scm?id=5df8f7802e8b45855e8f84830677001dc631e4f7'>home: Add 'home-generation-base'.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2021-12-19 23:39:55 +0100'>2021-12-19</span></td><td><a href='/guix/commit/gnu/home.scm?id=ed818c66d371656c869f43d7a7cbbcfba2df647b'>home: Add gexp-compiler for home-environments.</a><span class='msg-avail'>...</span></td><td>Andrew Tropin</td></tr>
<tr><td><span title='2021-10-09 19:24:18 +0300'>2021-10-09</span></td><td><a href='/guix/commit/gnu/home.scm?id=0e8d2df0f1a4ab25c482e1c427c54e19903e62f3'>Move (gnu home-services) to (gnu home services).</a><span class='msg-avail'>...</span></td><td>Oleg Pykhalov</td></tr>
<tr><td><span title='2021-10-08 15:36:18 +0300'>2021-10-08</span></td><td><a href='/guix/commit/gnu/home.scm?id=ba8ddb348045f81f061a1c7f51c0f7c2b0024e71'>gnu: Move (gnu home-services) to (gnu home services).</a><span class='msg-avail'>...</span></td><td>Oleg Pykhalov</td></tr>
<tr><td><span title='2021-09-09 20:26:51 +0300'>2021-09-09</span></td><td><a href='/guix/commit/gnu/home.scm?id=994c66bf846774da5104537ef1037d6a5bc56995'>gnu: home: Add doc comment about the module.</a><span class='msg-avail'>...</span></td><td>Andrew Tropin</td></tr>
<tr><td><span title='2021-09-09 20:26:50 +0300'>2021-09-09</span></td><td><a href='/guix/commit/gnu/home.scm?id=7fcc64253c2c48fee96f7925453161eb2b3a709e'>home: Add home-environment.</a><span class='msg-avail'>...</span></td><td>Andrew Tropin</td></tr>