useradd: Fix buffer overflow when using a prefix

author David Michael <fedora.dm0@gmail.com>

Sun, 23 Oct 2022 22:51:33 +0000 (18:51 -0400)

committer Serge Hallyn <serge@hallyn.com>

Mon, 24 Oct 2022 21:15:13 +0000 (16:15 -0500)
author David Michael <fedora.dm0@gmail.com>
Sun, 23 Oct 2022 22:51:33 +0000 (18:51 -0400)
committer Serge Hallyn <serge@hallyn.com>
Mon, 24 Oct 2022 21:15:13 +0000 (16:15 -0500)
diff --git a/src/useradd.c b/src/useradd.c

index 39a744ee071c818368fe5292391f0a5aca3f9907..7ea0a9c4d87426818f71eae6099a62fff9151ef1 100644 (file)
--- a/src/useradd.c
+++ b/src/useradd.c
@@ -2372,7 +2372,7 @@ static void create_mail (void)
                 if (NULL == spool) {
                         return;
                 }
-               file = alloca (strlen (prefix) + strlen (spool) + strlen (user_name) + 2);
+               file = alloca (strlen (prefix) + strlen (spool) + strlen (user_name) + 3);
                 if (prefix[0])
                         sprintf (file, "%s/%s/%s", prefix, spool, user_name);
                 else
author	David Michael <fedora.dm0@gmail.com>
	Sun, 23 Oct 2022 22:51:33 +0000 (18:51 -0400)
committer	Serge Hallyn <serge@hallyn.com>
	Mon, 24 Oct 2022 21:15:13 +0000 (16:15 -0500)