tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

- (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAM 

account check failure path. The vulnerable format buffer is supplied
   from PAM and should not contain attacker-supplied data.
This commit is contained in:
Damien Miller 2008-07-09 20:54:05 +10:00
parent d9648eee7c
commit 773a7b98f9
2 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
ChangeLog
View File

@ -1,5 +1,8 @@
20080709 20080709
- (djm) [Makefile.in] Print "all tests passed" when all regress tests pass - (djm) [Makefile.in] Print "all tests passed" when all regress tests pass
- (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAM
account check failure path. The vulnerable format buffer is supplied
from PAM and should not contain attacker-supplied data.
20080705 20080705
- (djm) [auth.c] Fixed test for locked account on HP/UX with shadowed - (djm) [auth.c] Fixed test for locked account on HP/UX with shadowed
@ -4598,4 +4601,4 @@
OpenServer 6 and add osr5bigcrypt support so when someone migrates OpenServer 6 and add osr5bigcrypt support so when someone migrates
passwords between UnixWare and OpenServer they will still work. OK dtucker@ passwords between UnixWare and OpenServer they will still work. OK dtucker@
$Id: ChangeLog,v 1.5066 2008/07/08 14:21:12 djm Exp $ $Id: ChangeLog,v 1.5067 2008/07/09 10:54:05 djm Exp $

2
auth1.c
View File

@ -354,7 +354,7 @@ do_authloop(Authctxt *authctxt)
msg[len] = '\0'; msg[len] = '\0';
else else
msg = "Access denied."; msg = "Access denied.";
packet_disconnect(msg); packet_disconnect("%s", msg);
} }
#endif #endif