summaryrefslogtreecommitdiffstats
path: root/debian/patches/75_29-Auths-fix-possible-OOB-write-in-external-authenticat.patch
diff options
context:
space:
mode:
Diffstat (limited to 'debian/patches/75_29-Auths-fix-possible-OOB-write-in-external-authenticat.patch')
-rw-r--r--debian/patches/75_29-Auths-fix-possible-OOB-write-in-external-authenticat.patch22
1 files changed, 22 insertions, 0 deletions
diff --git a/debian/patches/75_29-Auths-fix-possible-OOB-write-in-external-authenticat.patch b/debian/patches/75_29-Auths-fix-possible-OOB-write-in-external-authenticat.patch
new file mode 100644
index 0000000..f6936a9
--- /dev/null
+++ b/debian/patches/75_29-Auths-fix-possible-OOB-write-in-external-authenticat.patch
@@ -0,0 +1,22 @@
+From 7bb5bc2c6592e062bf0b514cc71afd2d93e2e0dd Mon Sep 17 00:00:00 2001
+From: Jeremy Harris <jgh146exb@wizmail.org>
+Date: Thu, 11 May 2023 18:02:43 +0100
+Subject: [PATCH 1/4] Auths: fix possible OOB write in external authenticator.
+ Bug 2999
+
+---
+ doc/doc-txt/ChangeLog | 3 +++
+ src/src/auths/external.c | 2 +-
+ 2 files changed, 4 insertions(+), 1 deletion(-)
+
+--- a/src/auths/external.c
++++ b/src/auths/external.c
+@@ -103,7 +103,7 @@ if (expand_nmax == 0) /* skip if rxd da
+ if (ob->server_param2)
+ {
+ uschar * s = expand_string(ob->server_param2);
+- auth_vars[expand_nmax] = s;
++ auth_vars[expand_nmax = 1] = s;
+ expand_nstring[++expand_nmax] = s;
+ expand_nlength[expand_nmax] = Ustrlen(s);
+ if (ob->server_param3)