[Bugfix] theme %ss will overflow buffer, update %ft manual entry

%ss did not check for the size of the resulting string before copying it to the buffer %ft has a search text mode Change-Id: I1321681c249251aafe0e39bcc510b9e81f0cd0d3
2024-12-22 23:59:31 -05:00 · 2024-12-22 23:59:31 -05:00 · dfd01709c5
commit dfd01709c5
parent 50515de940
2 changed files with 16 additions and 7 deletions
--- a/apps/gui/skin_engine/skin_tokens.c
+++ b/apps/gui/skin_engine/skin_tokens.c
@ -823,7 +823,11 @@ const char *get_token_value(struct gui_wps *gwps,
                byte_len = end_byte - start_byte;

                if (token_val != buf)
+                {
+                    if (byte_len >= buf_size) /* the resulting string exceeds buf */
+                        return &token_val[start_byte]; /* just return the string */
                    memcpy(buf, &token_val[start_byte], byte_len);
+                }
                else
                    buf = &buf[start_byte];