From 19849a45e0de4f23a969df7589e1265fecbceb01 Mon Sep 17 00:00:00 2001
From: Qualys Security Advisory <qsa@qualys.com>
Date: Thu, 1 Jan 1970 00:00:00 +0000
Subject: [PATCH] proc/readproc.c: Harden get_proc_stats().

Replace sprintf() with snprintf().
---
 proc/readproc.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/proc/readproc.c b/proc/readproc.c
index aaa8a29c..de69cdad 100644
--- a/proc/readproc.c
+++ b/proc/readproc.c
@@ -1635,7 +1635,7 @@ proc_t * get_proc_stats(pid_t pid, proc_t *p) {
     static char path[32];
     struct stat statbuf;
 
-    sprintf(path, "/proc/%d", pid);
+    snprintf(path, sizeof path, "/proc/%d", pid);
     if (stat(path, &statbuf)) {
         perror("stat");
         return NULL;