From cc2bd9d599989d92d1e3267d93e8243435e0fb16 Mon Sep 17 00:00:00 2001 From: David Delarosa Date: Mon, 20 Oct 2025 13:50:43 +0300 Subject: [PATCH] opt: limit scanf string length to 255 --- src/config/parse_config.h | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/config/parse_config.h b/src/config/parse_config.h index d6260c9..8e509cc 100644 --- a/src/config/parse_config.h +++ b/src/config/parse_config.h @@ -1812,7 +1812,7 @@ void parse_option(Config *config, char *key, char *value) { arg_value[256] = "0\0", arg_value2[256] = "0\0", arg_value3[256] = "0\0", arg_value4[256] = "0\0", arg_value5[256] = "0\0"; - if (sscanf(value, "%[^,],%[^,],%[^,],%[^,],%[^,],%[^,],%[^,],%[^\n]", + if (sscanf(value, "%255[^,],%255[^,],%255[^,],%255[^,],%255[^,],%255[^,],%255[^,],%255[^\n]", mod_str, keysym_str, func_name, arg_value, arg_value2, arg_value3, arg_value4, arg_value5) < 3) { fprintf(stderr, "Error: Invalid bind format: %s\n", value);