cdc598e8bd
Fix 'Bugs 4, 5, and 6' which all use a similar fix but would have
conflicts over '#define BIGBUFSZ' if committed separately.
Format ("short explanation %s", string_argument), where the
explanation always has modest length but the string is potentially
up to 4*BUFSZ in length, into a 5*BUFSZ buffer. Then truncate the
result to at most BUFSZ-1 characters so that it can be safely passed
to interface-specific putstr() or raw_print().
Applies to pline(), raw_printf(), and config_error_add(). Also done
for impossible() although there's no evidence that its buffer could
be overflowed in a controlled manner.
29 lines
977 B
Groff
29 lines
977 B
Groff
$NHDT-Branch: NetHack-3.6 $:$NHDT-Revision: 1.3 $ $NHDT-Date: 1578996303 2020/01/14 10:05:03 $
|
|
|
|
fixes36.5 contains a terse summary of changes made to 3.6.4 in order to
|
|
produce 3.6.5 as well as any post-release fixes in binaries.
|
|
|
|
|
|
General Fixes and Modified Features
|
|
-----------------------------------
|
|
have string_for_opt() return empty_optstr on failure
|
|
ensure existing callers of string_for_opt() check return value before using it
|
|
fix potential buffer overflow in add_menu_coloring()
|
|
fix potential buffer overflow in sym_val()
|
|
fix potential buffer overflow in pline(), raw_printf(), and config_error_add()
|
|
|
|
|
|
Fixes to Post-3.6.4 Problems that Were Exposed Via git Repository
|
|
------------------------------------------------------------------
|
|
|
|
|
|
Platform- and/or Interface-Specific Fixes or Features
|
|
-----------------------------------------------------
|
|
Windows OPTIONS=map_mode:fit_to_screen could cause a game start failure
|
|
|
|
|
|
General New Features
|
|
--------------------
|
|
none
|
|
|