From 3e53a34615c2535dbed3d7c2c7a00f1ef3eaff0a Mon Sep 17 00:00:00 2001 From: shennetsind Date: Sat, 17 Jan 2015 18:49:03 -0200 Subject: Another ~10 Fixes Addressing out of bounds read/write. Special Thanks to 4144 and Haruna! Signed-off-by: shennetsind --- src/char/pincode.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'src/char') diff --git a/src/char/pincode.c b/src/char/pincode.c index e0ee9557d..02c71b3b6 100644 --- a/src/char/pincode.c +++ b/src/char/pincode.c @@ -78,7 +78,7 @@ void pincode_change(int fd, struct char_session_data* sd) { safestrncpy(newpin, (char*)RFIFOP(fd,10), sizeof(newpin)); pincode->decrypt(sd->pincode_seed,newpin); pincode->update( sd->account_id, newpin ); - strncpy(sd->pincode, newpin, sizeof(sd->pincode)); + safestrncpy(sd->pincode, newpin, sizeof(sd->pincode)); pincode->sendstate( fd, sd, PINCODE_ASK ); } @@ -114,7 +114,7 @@ void pincode_notifyLoginPinUpdate(int account_id, char* pin) { WFIFOHEAD(chr->login_fd,11); WFIFOW(chr->login_fd,0) = 0x2738; WFIFOL(chr->login_fd,2) = account_id; - strncpy( (char*)WFIFOP(chr->login_fd,6), pin, 5 ); + safestrncpy( (char*)WFIFOP(chr->login_fd,6), pin, 5 ); WFIFOSET(chr->login_fd,11); } -- cgit v1.2.3-60-g2f50