Bugfix: Fix possible buffer overflow (#901)

author Luke Dashjr <luke-jr+git@utopios.org>

Sat, 3 Mar 2012 18:51:10 +0000 (13:51 -0500)

committer Luke Dashjr <luke-jr+git@utopios.org>

Sat, 3 Mar 2012 18:51:10 +0000 (13:51 -0500)
author Luke Dashjr <luke-jr+git@utopios.org>
Sat, 3 Mar 2012 18:51:10 +0000 (13:51 -0500)
committer Luke Dashjr <luke-jr+git@utopios.org>
Sat, 3 Mar 2012 18:51:10 +0000 (13:51 -0500)
diff --git a/src/util.cpp b/src/util.cpp

index e2e104c..0f496bc 100644 (file)
--- a/src/util.cpp
+++ b/src/util.cpp
@@ -653,20 +653,25 @@ string MyGetSpecialFolderPath(int nFolder, bool fCreate)
     }
 
     // Backup option
-    pszPath[0] = '\0';
+    std::string strPath;
     {
+        const char *pszEnv;
         if (nFolder == CSIDL_STARTUP)
         {
-            strcpy(pszPath, getenv("USERPROFILE"));
-            strcat(pszPath, "\\Start Menu\\Programs\\Startup");
+            pszEnv = getenv("USERPROFILE");
+            if (pszEnv)
+                strPath = pszEnv;
+            strPath += "\\Start Menu\\Programs\\Startup";
         }
         else if (nFolder == CSIDL_APPDATA)
         {
-            strcpy(pszPath, getenv("APPDATA"));
+            pszEnv = getenv("APPDATA");
+            if (pszEnv)
+                strPath = pszEnv;
         }
     }
 
-    return pszPath;
+    return strPath;
 }
 #endif
author	Luke Dashjr <luke-jr+git@utopios.org>
	Sat, 3 Mar 2012 18:51:10 +0000 (13:51 -0500)
committer	Luke Dashjr <luke-jr+git@utopios.org>
	Sat, 3 Mar 2012 18:51:10 +0000 (13:51 -0500)