git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	William Lallemand <wlallemand@haproxy.com>
	Tue, 26 May 2026 12:08:38 +0000 (14:08 +0200)
committer	William Lallemand <wlallemand@haproxy.com>
	Tue, 26 May 2026 12:13:23 +0000 (14:13 +0200)
commit	dfb6daca1fc398949fcba19e030748ebe8487de2
tree	c360b3bf3c2800cbb0a0b6c8ed61d440315b7d3a	tree \| snapshot
parent	e4a5a64198bb084eaef2e71bfde65704a5db3931	commit \| diff

BUG/MEDIUM: auth: fix unconfigured password NULL deref

Fix a case of dereference NULL pointer when trying to use an user from
an userlist which does not have a password configured.

The check_user() function tries to do an strcmp of the password, howver
u->pass is NULL and the strcmp would crash when trying.

Must be backported in every stable branches.

src/auth.c

diff | blob | blame | history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom