From: Alan T. DeKok <aland@freeradius.org>
Date: Sun, 17 Feb 2013 20:35:22 +0000 (-0500)
Subject: Check length of ascend secrets
X-Git-Tag: release_3_0_0_beta1~1063
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=5cea200145a381064cff819497fd4a626503c5c8;p=thirdparty%2Ffreeradius-server.git

Check length of ascend secrets
---

diff --git a/src/lib/radius.c b/src/lib/radius.c
index ac638ce2e4d..1797a17c841 100644
--- a/src/lib/radius.c
+++ b/src/lib/radius.c
@@ -1003,6 +1003,7 @@ static ssize_t vp2data_any(const RADIUS_PACKET *packet,
 		 *	always fits.
 		 */
 	case FLAG_ENCRYPT_ASCEND_SECRET:
+		if (len != 16) return 0;
 		make_secret(ptr, packet->vector, secret, data);
 		len = AUTH_VECTOR_LEN;
 		break;