From: Stephan Bosch <stephan.bosch@open-xchange.com>
Date: Sat, 7 Oct 2023 23:21:47 +0000 (+0200)
Subject: login-common: client-common-auth - Use safe_memset() to clear auth response
X-Git-Tag: 2.4.0~2492
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=28fdf420296ff38a9e71bb35b54049fcc25ac188;p=thirdparty%2Fdovecot%2Fcore.git

login-common: client-common-auth - Use safe_memset() to clear auth response
---

diff --git a/src/login-common/client-common-auth.c b/src/login-common/client-common-auth.c
index cdbf037d47..927122296c 100644
--- a/src/login-common/client-common-auth.c
+++ b/src/login-common/client-common-auth.c
@@ -878,8 +878,8 @@ static void client_auth_input(struct client *client)
 		return;
 
 	client_auth_respond(client, str_c(client->auth_response));
-	memset(str_c_modifiable(client->auth_response), 0,
-	       str_len(client->auth_response));
+	safe_memset(str_c_modifiable(client->auth_response), 0,
+		    str_len(client->auth_response));
 }
 
 void client_auth_send_challenge(struct client *client, const char *data)