Commit ebf15202 authored by Ray Strode's avatar Ray Strode

jsauthority: pass "%s" format string to report functions

This just avoids the potential for security problems down the line.
Signed-off-by: Ray Strode's avatarRay Strode <rstrode@redhat.com>

https://bugs.freedesktop.org/show_bug.cgi?id=105865
parent 4334feaa
......@@ -1469,7 +1469,7 @@ js_polkit_spawn (JSContext *cx,
}
g_string_append_printf (gstr, ", stdout=`%s', stderr=`%s'",
standard_output, standard_error);
JS_ReportErrorUTF8 (cx, gstr->str);
JS_ReportErrorUTF8 (cx, "%s", gstr->str);
g_string_free (gstr, TRUE);
goto out;
}
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment