From 51cd6586d5fee35756135e2d930feeffa41b2b3e Mon Sep 17 00:00:00 2001
From: Markus Uhlin <markus@nifty-networks.net>
Date: Wed, 8 Apr 2026 00:31:12 +0200
Subject: com_handles: check the player dir

---
 FICS/comproc.c | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

(limited to 'FICS/comproc.c')

diff --git a/FICS/comproc.c b/FICS/comproc.c
index cd7d6bb..1a395ca 100644
--- a/FICS/comproc.c
+++ b/FICS/comproc.c
@@ -2062,9 +2062,14 @@ com_handles(int p, param_list param)
 {
 	char	*buffer[1000] = { NULL };
 	char	 pdir[MAX_FILENAME_SIZE] = { '\0' };
-	int	 count;
+	int	 count, ret;
 
-	snprintf(pdir, sizeof pdir, "%s/%c", player_dir, param[0].val.word[0]);
+	ret = snprintf(pdir, sizeof pdir, "%s/%c", player_dir,
+	    param[0].val.word[0]);
+	if (is_too_long(ret, sizeof pdir)) {
+		warnx("%s: player dir too long", __func__);
+		return COM_FAILED;
+	}
 
 	count = search_directory(pdir, param[0].val.word, buffer,
 	    ARRAY_SIZE(buffer));
-- 
cgit v1.2.3