commit ef9d6aa70d68cd3a765ed55f4c3781aeb8aeea23
author Bram Moolenaar <Bram@vim.org> Mon Apr 11 16:56:35 2011 +0200
committer Bram Moolenaar <Bram@vim.org> Mon Apr 11 16:56:35 2011 +0200
tree e099b52d0ebf51c535ebe3cd875d8f70c06332df
parent 0d35e91abfa9e17f7c554bfd33b119b879448c72

updated for version 7.3.160
Problem:    Unsafe string copying.
Solution:   Use vim_strncpy() instead of strcpy().  Use vim_strcat() instead
            of strcat().

src/misc1.c

diff --git a/src/misc1.c b/src/misc1.c
index 97e29c2..f09a5bd 100644
--- a/src/misc1.c
+++ b/src/misc1.c
@@ -3332,19 +3332,23 @@
 	if (pn == 1)
 	{
 	    if (n > 0)
-		STRCPY(msg_buf, _("1 more line"));
+		vim_strncpy(msg_buf, (char_u *)_("1 more line"),
+							     MSG_BUF_LEN - 1);
 	    else
-		STRCPY(msg_buf, _("1 line less"));
+		vim_strncpy(msg_buf, (char_u *)_("1 line less"),
+							     MSG_BUF_LEN - 1);
 	}
 	else
 	{
 	    if (n > 0)
-		sprintf((char *)msg_buf, _("%ld more lines"), pn);
+		vim_snprintf((char *)msg_buf, MSG_BUF_LEN,
+						     _("%ld more lines"), pn);
 	    else
-		sprintf((char *)msg_buf, _("%ld fewer lines"), pn);
+		vim_snprintf((char *)msg_buf, MSG_BUF_LEN,
+						    _("%ld fewer lines"), pn);
 	}
 	if (got_int)
-	    STRCAT(msg_buf, _(" (Interrupted)"));
+	    vim_strcat(msg_buf, (char_u *)_(" (Interrupted)"), MSG_BUF_LEN);
 	if (msg(msg_buf))
 	{
 	    set_keep_msg(msg_buf, 0);