dovecot-2.2: auth: Fixed (non-exploitable) buffer overflow in DI...
dovecot at dovecot.org
dovecot at dovecot.org
Sun Nov 24 20:27:57 EET 2013
details: http://hg.dovecot.org/dovecot-2.2/rev/2b3541c3e262
changeset: 17021:2b3541c3e262
user: Timo Sirainen <tss at iki.fi>
date: Sun Nov 24 20:27:27 2013 +0200
description:
auth: Fixed (non-exploitable) buffer overflow in DIGEST-MD5 data parsing.
Found by Jann Horn.
diffstat:
src/auth/mech-digest-md5.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diffs (12 lines):
diff -r 8a3d0426f514 -r 2b3541c3e262 src/auth/mech-digest-md5.c
--- a/src/auth/mech-digest-md5.c Sat Nov 23 23:22:09 2013 +0000
+++ b/src/auth/mech-digest-md5.c Sun Nov 24 20:27:27 2013 +0200
@@ -246,7 +246,7 @@
*value = p+1;
/* skip trailing whitespace in key */
- while (IS_LWS(p[-1]))
+ while (p > *data && IS_LWS(p[-1]))
p--;
*p = '\0';
More information about the dovecot-cvs
mailing list