[Date Prev][Date Next] [Chronological] [Thread] [Top]

overflows in back-passwd/search.c function pw2entry() (ITS#2046)



Full_Name: Ralf Haferkamp
Version: 2.0.X, HEAD
OS: 
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (213.95.15.201)


Overflows via sprintf() and strcpy()/strcat(). Could use snprintf(). Even if the
input is from passwd-file it may overflow since some parts are usercontrolled
(e.g. gecos).