diff options
author | Damien Miller <djm@mindrot.org> | 2008-07-09 20:54:05 +1000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2008-07-09 20:54:05 +1000 |
commit | 773a7b98f9d4e0767dfdd270a339e9f31ca4edea (patch) | |
tree | a05f6443bb1691edc6140d65af6b0db73c89ccc6 /auth1.c | |
parent | d9648eee7cacf633c79ad0f50d7e3215200d2920 (diff) | |
download | openssh-git-773a7b98f9d4e0767dfdd270a339e9f31ca4edea.tar.gz |
- (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAM
account check failure path. The vulnerable format buffer is supplied
from PAM and should not contain attacker-supplied data.
Diffstat (limited to 'auth1.c')
-rw-r--r-- | auth1.c | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -354,7 +354,7 @@ do_authloop(Authctxt *authctxt) msg[len] = '\0'; else msg = "Access denied."; - packet_disconnect(msg); + packet_disconnect("%s", msg); } #endif |