[exim-dev] [Bug 1552] lack of correct truncated string lengt…

Top Page
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Old-Topics: [exim-dev] [Bug 1552] New: lack of correct truncated string length storage in spam address
Subject: [exim-dev] [Bug 1552] lack of correct truncated string length storage in spam address
https://bugs.exim.org/show_bug.cgi?id=1552

--- Comment #4 from Git Commit <git@???> ---
Git commit:
https://git.exim.org/exim.git/commitdiff/13b449c67ca264de99ac5e01b77a8324672f8e07

commit 13b449c67ca264de99ac5e01b77a8324672f8e07
Author:     Jeremy Harris <jgh146exb@???>
AuthorDate: Thu Nov 27 16:26:44 2014 +0000
Commit:     Jeremy Harris <jgh146exb@???>
CommitDate: Thu Nov 27 16:35:10 2014 +0000


    Fix buffer overrun in spam= acl condition.  Bug 1552
---
 src/src/spam.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)


diff --git a/src/src/spam.c b/src/src/spam.c
index 3a5349f..dab57ff 100644
--- a/src/src/spam.c
+++ b/src/src/spam.c
@@ -136,7 +136,7 @@ spam(uschar **listptr)
         (spamd_address_container *)store_get(sizeof(spamd_address_container));


       /* grok spamd address and port */
-      if (sscanf(CS address, "%s %u", this_spamd->tcp_addr,
&(this_spamd->tcp_port)) != 2)
+      if (sscanf(CS address, "%23s %u", this_spamd->tcp_addr,
&this_spamd->tcp_port) != 2)
         {
         log_write(0, LOG_MAIN,
           "%s warning - invalid spamd address: '%s'", loglabel, address);


--
You are receiving this mail because:
You are on the CC list for the bug.