From: Karl Fleischmann <karl.fleischmann@open-xchange.com>
Date: Mon, 18 Mar 2024 14:17:20 +0000 (+0100)
Subject: auth: %{original_domain} wasn't escaped and may have caused a crash
X-Git-Tag: 2.4.0~553
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=f51c03fc509f181b98095e72ca16455ca1882929;p=thirdparty%2Fdovecot%2Fcore.git

auth: %{original_domain} wasn't escaped and may have caused a crash
---

diff --git a/src/auth/auth-request-var-expand.c b/src/auth/auth-request-var-expand.c
index 16db9bb229..24778c9062 100644
--- a/src/auth/auth-request-var-expand.c
+++ b/src/auth/auth-request-var-expand.c
@@ -193,7 +193,7 @@ auth_request_get_var_expand_table_full(const struct auth_request *auth_request,
 	tab[28].value = tab[ALIAS(10)].value = escape_func(t_strcut(orig_user, '@'), auth_request);
 	tab[29].value = tab[ALIAS(11)].value = i_strchr_to_next(orig_user, '@');
 	if (tab[29].value != NULL)
-		tab[29].value = tab[ALIAS(12)].value =
+		tab[29].value = tab[ALIAS(11)].value =
 			escape_func(tab[29].value, auth_request);
 
 	if (fields->master_user != NULL)