Sophie

Sophie

distrib > Mandriva > 2007.0 > x86_64 > by-pkgid > bc717b9e96f4070e178e261ab5007579 > files > 10

cups-1.2.4-1.8mdv2007.0.src.rpm

--- cups-1.2.10/filter/hpgl-input.c.cve-2008-0053	2006-02-22 14:21:50.000000000 -0500
+++ cups-1.2.10/filter/hpgl-input.c	2008-03-27 11:18:50.000000000 -0400
@@ -56,6 +56,7 @@ ParseCommand(FILE    *fp,	/* I - File to
 		i;		/* Looping var */
   char		buf[262144],	/* String buffer */
 		*bufptr;	/* Pointer into buffer */
+  float         temp;           /* Temporary parameter value */
   static param_t p[MAX_PARAMS];	/* Parameter buffer */
 
 
@@ -214,10 +215,10 @@ ParseCommand(FILE    *fp,	/* I - File to
       case '-' :
       case '+' :
           ungetc(ch, fp);
-          fscanf(fp, "%f", &(p[num_params].value.number));
-          if (num_params < MAX_PARAMS)
+          if (fscanf(fp, "%f", &temp) == 1 && num_params < MAX_PARAMS)
           {
-            p[num_params].type = PARAM_RELATIVE;
+            p[num_params].type         = PARAM_RELATIVE;
+            p[num_params].value.number = temp;
             num_params ++;
           }
           break;
@@ -233,10 +234,10 @@ ParseCommand(FILE    *fp,	/* I - File to
       case '9' :
       case '.' :
           ungetc(ch, fp);
-          fscanf(fp, "%f", &(p[num_params].value.number));
-          if (num_params < MAX_PARAMS)
+          if (fscanf(fp, "%f", &temp) == 1 && num_params < MAX_PARAMS)
           {
-            p[num_params].type = PARAM_ABSOLUTE;
+            p[num_params].type         = PARAM_ABSOLUTE;
+            p[num_params].value.number = temp;
             num_params ++;
           }
           break;

Perl :: Catalyst :: PostgreSQL :: RPM Valid HTML 4.01 Transitional