From: Ilia Alshanetsky <iliaa@php.net>
Date: Thu, 28 Dec 2006 15:21:41 +0000 (+0000)
Subject: MFH: Added buffer length checks
X-Git-Tag: php-4.4.5RC1~16
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=f437f392e205944b5817ae6272a547e573a49940;p=php

MFH: Added buffer length checks
---

diff --git a/ext/pgsql/pgsql.c b/ext/pgsql/pgsql.c
index a831530b3d..cd2f7df189 100644
--- a/ext/pgsql/pgsql.c
+++ b/ext/pgsql/pgsql.c
@@ -4285,7 +4285,7 @@ static inline int build_assignment_string(smart_str *querystr, HashTable *ht, co
 				smart_str_append_long(querystr, Z_LVAL_PP(val));
 				break;
 			case IS_DOUBLE:
-				smart_str_appendl(querystr, buf, sprintf(buf, "%f", Z_DVAL_PP(val)));
+				smart_str_appendl(querystr, buf, MIN(snprintf(buf, sizeof(buf), "%f", Z_DVAL_PP(val)), sizeof(buf)-1));
 				break;
 			default:
 				/* should not happen */