]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 51ff354) | patch
digest_edirectory_auth: safely return password (#2197)
authorJoshua Rogers <MegaManSec@users.noreply.github.com>
Thu, 11 Sep 2025 11:58:52 +0000 (11:58 +0000)
committerSquid Anubis <squid-anubis@squid-cache.org>
Thu, 11 Sep 2025 11:59:00 +0000 (11:59 +0000)
commit0d9d22206334a424dec2d83f184f71647632fba3
tree7e69d71e818de0d621fc16ad3fb2cc1609e93998tree | snapshot
parent51ff354e645db30ef805544e16c1fd696f11a1f8commit | diff
digest_edirectory_auth: safely return password (#2197)

Previously, nmasldap_get_simple_pwd() and nmasldap_get_password()
could overrun or return non-terminated strings at length
boundaries. This change adds strict bounds checks, copies at most
len - 1, and ensures explicit NUL termination, aligning both
helpers buffer/length semantics without altering call-site
behavior.
src/auth/digest/eDirectory/edir_ldapext.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git