I previously reported a bug in freshclam/manager.c at line 362. My fix was incorrect and the problem is also at line 460.
Both lines 362 and 460 need to be changed from:
char* buf = mmalloc(strlen(user)*2+4);
to:
char *buf = mmalloc((strlen(user) + strlen(pass)) * 2 + 3);This ensures that "buf" is large enough to contain the base64 expansion of user:pass, including the \0.
This has been reported on the ClamAV list.
Cheers Bill
_______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list [EMAIL PROTECTED] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
