Infinite loop in saslauthd/auth_rimap.c (qstring function)
Roberto C. Sánchez
roberto at connexer.com
Fri Jan 11 03:20:02 UTC 2008
On Thu, Jan 10, 2008 at 12:07:21PM +0100, Andreas Lind Petersen wrote:
> Dear maintainer(s) of cyrus-sasl,
>
> I've found a pretty serious bug in the rimap authentication module's
> qstring function (cyrus-sasl-2.1.22).
>
> The algorithm for counting the number of doublequotes in a string
> doesn't increment the pointer returned by strchr when a doublequote has
> been found, leading to an infinite loop whenever the string contains at
> least one doublequote character. Here's a quick patch that resolves the
> issue:
>
Have you reported this to upstream as well?
regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-cyrus-sasl2-debian-devel/attachments/20080110/497b16a5/attachment.pgp
More information about the Pkg-cyrus-sasl2-debian-devel
mailing list