- markus@cvs.openbsd.org 2003/10/21 09:50:06

[auth2-gss.c] make sure the doid is larger than 2
author: Darren Tucker <dtucker@zip.com.au> 2003-11-03 20:05:03 +1100
committer: Darren Tucker <dtucker@zip.com.au> 2003-11-03 20:05:03 +1100
commit: 8cc39788cbe1d9caaf78ebb4c0a29ad6a61a9876 (patch)
tree: ec856eb943581f56070576ff11fbd6f70cd6ac10 /auth2-gss.c
parent: a47c9bcda632c6dc85dd3f15a454f154fba8a6a6 (diff)
download: openssh-git-8cc39788cbe1d9caaf78ebb4c0a29ad6a61a9876.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/auth2-gss.c b/auth2-gss.c
index 75b94b00..a82b87f5 100644
--- a/auth2-gss.c
+++ b/auth2-gss.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: auth2-gss.c,v 1.3 2003/09/01 20:44:54 markus Exp $	*/
+/*	$OpenBSD: auth2-gss.c,v 1.4 2003/10/21 09:50:06 markus Exp $	*/
 
 /*
  * Copyright (c) 2001-2003 Simon Wilkinson. All rights reserved.
@@ -79,6 +79,8 @@ userauth_gssapi(Authctxt *authctxt)
 			xfree(doid);
 
 		doid = packet_get_string(&len);
+		if (len <= 2)
+			packet_disconnect("Short OID received");
 
 		if (doid[0] != SSH_GSS_OIDTYPE || doid[1] != len-2) {
 			logit("Mechanism OID received using the old encoding form");
author	Darren Tucker <dtucker@zip.com.au>	2003-11-03 20:05:03 +1100
committer	Darren Tucker <dtucker@zip.com.au>	2003-11-03 20:05:03 +1100
commit	8cc39788cbe1d9caaf78ebb4c0a29ad6a61a9876 (patch)
tree	ec856eb943581f56070576ff11fbd6f70cd6ac10 /auth2-gss.c
parent	a47c9bcda632c6dc85dd3f15a454f154fba8a6a6 (diff)
download	openssh-git-8cc39788cbe1d9caaf78ebb4c0a29ad6a61a9876.tar.gz