gsasl-commit
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CVS gsasl/lib/securid


From: gsasl-commit
Subject: CVS gsasl/lib/securid
Date: Sat, 27 Nov 2004 04:21:26 +0100

Update of /home/cvs/gsasl/lib/securid
In directory dopio:/tmp/cvs-serv4700

Modified Files:
        server.c 
Log Message:
Fix read out of bounds error.


--- /home/cvs/gsasl/lib/securid/server.c        2004/10/13 16:23:32     1.6
+++ /home/cvs/gsasl/lib/securid/server.c        2004/11/27 03:21:24     1.7
@@ -58,17 +58,18 @@
     }
 
   authorization_id = input;
-  authentication_id = memchr (input, '\0', input_len);
+  authentication_id = memchr (input, '\0', input_len - 1);
   if (authentication_id)
     {
       authentication_id++;
       passcode = memchr (authentication_id, '\0',
-                        input_len - strlen (authorization_id) - 1);
+                        input_len - strlen (authorization_id) - 1 - 1);
       if (passcode)
        {
          passcode++;
          pin = memchr (passcode, '\0', input_len -
-                       strlen (authorization_id) - strlen (passcode) - 1);
+                       strlen (authorization_id) - 1 -
+                       strlen (authentication_id) - 1 - 1);
          if (pin)
            {
              pin++;





reply via email to

[Prev in Thread] Current Thread [Next in Thread]