1. Forum
  2. DOVE-Net
  3. Synchronet Programming

  • src/sbbs3/qwk.cpp qwktomsg.cpp

    From Rob Swindell (on Debian Linux)@VERT to Git commit to main/sbbs/master on Sun Apr 5 12:08:30 2026
    https://gitlab.synchro.net/main/sbbs/-/commit/437fce8269f3625e1c71314e
    Modified Files:
    src/sbbs3/qwk.cpp qwktomsg.cpp
    Log Message:
    Claude pointed out that these sscanf() calls are potentially dangerous

    Specify the max length (4 chars) of the hex-encoded SMB timezone in the format string to "harden" them.

    ---
    þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net