diff options
Diffstat (limited to 'meta-oe/recipes-extended/pam/pam-plugin-ccreds/0001-make-sure-we-don-t-overflow-the-data-buffer.patch')
| -rw-r--r-- | meta-oe/recipes-extended/pam/pam-plugin-ccreds/0001-make-sure-we-don-t-overflow-the-data-buffer.patch | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/pam/pam-plugin-ccreds/0001-make-sure-we-don-t-overflow-the-data-buffer.patch b/meta-oe/recipes-extended/pam/pam-plugin-ccreds/0001-make-sure-we-don-t-overflow-the-data-buffer.patch new file mode 100644 index 000000000..d7f8f5a96 --- /dev/null +++ b/meta-oe/recipes-extended/pam/pam-plugin-ccreds/0001-make-sure-we-don-t-overflow-the-data-buffer.patch | |||
| @@ -0,0 +1,29 @@ | |||
| 1 | From 59a95494002ce57ace17d676544101e88a55265d Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Nicolas Boullis <nicolas.boullis@ecp.fr> | ||
| 3 | Date: Mon, 23 Mar 2009 10:46:44 +0100 | ||
| 4 | Subject: [PATCH 1/3] make sure we don't overflow the data buffer | ||
| 5 | |||
| 6 | This patch was taken from Debian's libpam-ccreds v10-6 source: | ||
| 7 | 0001-make-sure-we-don-t-overflow-the-data-buffer.patch | ||
| 8 | |||
| 9 | Reviewed-by: Richard Leitner <richard.leitner@skidata.com> | ||
| 10 | --- | ||
| 11 | cc_db.c | 2 +- | ||
| 12 | 1 file changed, 1 insertion(+), 1 deletion(-) | ||
| 13 | |||
| 14 | diff --git a/cc_db.c b/cc_db.c | ||
| 15 | index c0e0488..9371c4d 100644 | ||
| 16 | --- a/cc_db.c | ||
| 17 | +++ b/cc_db.c | ||
| 18 | @@ -199,7 +199,7 @@ int pam_cc_db_get(void *_db, const char *keyname, size_t keylength, | ||
| 19 | return (rc == DB_NOTFOUND) ? PAM_AUTHINFO_UNAVAIL : PAM_SERVICE_ERR; | ||
| 20 | } | ||
| 21 | |||
| 22 | - if (val.size < *size) { | ||
| 23 | + if (val.size > *size) { | ||
| 24 | return PAM_BUF_ERR; | ||
| 25 | } | ||
| 26 | |||
| 27 | -- | ||
| 28 | 2.11.0 | ||
| 29 | |||