The following commit has been merged in the openafs-stable-1_6_x branch:
commit fd403e3f2ad74e7d568a4982d99af1acba305b55
Author: Simon Wilkinson <[email protected]>
Date: Sat Mar 2 13:01:14 2013 +0000
auth: Don't overflow buffer in CompFindUser
The fullname buffer in CompFindUser is theoretically big enough
to take the data usually supplied to it. However, play it safe by
using strlcat and strlcpy to catch buffer overflows.
Caught by coverity (#985771)
Reviewed-on: http://gerrit.openafs.org/9543
Tested-by: BuildBot <[email protected]>
Reviewed-by: Jeffrey Altman <[email protected]>
Reviewed-by: Derrick Brashear <[email protected]>
(cherry picked from commit cc95fca8e16f83d7dda3f09a5133dc9294299d61)
Change-Id: I900611e13d6254c4410915b0688b18a3b6c4acc3
Reviewed-on: http://gerrit.openafs.org/11063
Tested-by: BuildBot <[email protected]>
Reviewed-by: Andrew Deason <[email protected]>
Reviewed-by: Chas Williams - CONTRACTOR <[email protected]>
Reviewed-by: Stephan Wiesand <[email protected]>
src/auth/userok.c | 18 +++++++++++++-----
1 files changed, 13 insertions(+), 5 deletions(-)
--
OpenAFS Master Repository
_______________________________________________
OpenAFS-cvs mailing list
[email protected]
https://lists.openafs.org/mailman/listinfo/openafs-cvs
