auth: %{original_domain} wasn't escaped and may have caused a crash

author Karl Fleischmann <karl.fleischmann@open-xchange.com>

Mon, 18 Mar 2024 14:17:20 +0000 (15:17 +0100)

committer Aki Tuomi <aki.tuomi@open-xchange.com>

Fri, 17 Jan 2025 08:39:59 +0000 (10:39 +0200)
author Karl Fleischmann <karl.fleischmann@open-xchange.com>
Mon, 18 Mar 2024 14:17:20 +0000 (15:17 +0100)
committer Aki Tuomi <aki.tuomi@open-xchange.com>
Fri, 17 Jan 2025 08:39:59 +0000 (10:39 +0200)
diff --git a/src/auth/auth-request-var-expand.c b/src/auth/auth-request-var-expand.c

index 16db9bb2292b66971c6c3545a31883bd2a0f741b..24778c9062df3783b5c410d3b470f3c6b6c70c9c 100644 (file)
--- a/src/auth/auth-request-var-expand.c
+++ b/src/auth/auth-request-var-expand.c
@@ -193,7 +193,7 @@ auth_request_get_var_expand_table_full(const struct auth_request *auth_request,
         tab[28].value = tab[ALIAS(10)].value = escape_func(t_strcut(orig_user, '@'), auth_request);
         tab[29].value = tab[ALIAS(11)].value = i_strchr_to_next(orig_user, '@');
         if (tab[29].value != NULL)
-               tab[29].value = tab[ALIAS(12)].value =
+               tab[29].value = tab[ALIAS(11)].value =
                         escape_func(tab[29].value, auth_request);
  
         if (fields->master_user != NULL)
author	Karl Fleischmann <karl.fleischmann@open-xchange.com>
	Mon, 18 Mar 2024 14:17:20 +0000 (15:17 +0100)
committer	Aki Tuomi <aki.tuomi@open-xchange.com>
	Fri, 17 Jan 2025 08:39:59 +0000 (10:39 +0200)