diff options
Diffstat (limited to 'main/cyrus-sasl/CVE-2019-19906.patch')
-rw-r--r-- | main/cyrus-sasl/CVE-2019-19906.patch | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/main/cyrus-sasl/CVE-2019-19906.patch b/main/cyrus-sasl/CVE-2019-19906.patch new file mode 100644 index 00000000000..f7edb521e89 --- /dev/null +++ b/main/cyrus-sasl/CVE-2019-19906.patch @@ -0,0 +1,15 @@ +https://github.com/cyrusimap/cyrus-sasl/issues/587 + +diff --git a/lib/common.c b/lib/common.c +index bc3bf1df..9969d6aa 100644 +--- a/lib/common.c ++++ b/lib/common.c +@@ -190,7 +190,7 @@ int _sasl_add_string(char **out, size_t *alloclen, + + if (add==NULL) add = "(null)"; + +- addlen=strlen(add); /* only compute once */ ++ addlen=strlen(add)+1; /* only compute once */ + if (_buf_alloc(out, alloclen, (*outlen)+addlen)!=SASL_OK) + return SASL_NOMEM; + |