Commit af63d4ac authored by Ray Strode's avatar Ray Strode

jsauthority: pass "%s" format string to report functions

This just avoids the potential for security problems down the line.
parent b916901a
......@@ -1464,7 +1464,7 @@ js_polkit_spawn (JSContext *cx,
g_string_append_printf (gstr, ", stdout=`%s', stderr=`%s'",
standard_output, standard_error);
JS_ReportErrorUTF8 (cx, gstr->str);
JS_ReportErrorUTF8 (cx, "%s", gstr->str);
g_string_free (gstr, TRUE);
goto out;
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment