Re: [exim] Exim 4.94 PAM SMTP auth - Taint

Page principale
Ce message fait partie du fil suivant :
MArborescence complète du fil triée par date
MJeremy Harris à <-
MJeremy Harris à ->
Supprimer ce message
Répondre à ce message
Auteur: Patrick Boutilier
Date:  
À: exim-users
Sujet: Re: [exim] Exim 4.94 PAM SMTP auth - Taint
On 6/2/20 9:37 AM, Jeremy Harris via Exim-users wrote:
> On 02/06/2020 13:16, Patrick Boutilier via Exim-users wrote:
>> On 6/2/20 8:58 AM, Jeremy Harris via Exim-users wrote:
>>> On 02/06/2020 02:06, Patrick Boutilier via Exim-users wrote:
>>>> 2020-06-01 21:35:52 Taint mismatch, string_nextinlist: auth_call_pam 158
>>>
>>> Thanks for the report.  Is this a self-build, or from a distro?
>>> Either way, feels like a bug.  If you can build yourself then
>>> a possible fix can be tested quickly.
>>>
>>
>> Self build from source.
>
> In src/auths/call_pam.c at about line 158,
> replace "big_buffer" with "NULL" and "big_buffer_size" with "0".
>

Made the change and got:

2020-06-02 10:39:32 Taint mismatch, string_nextinlist: pam_converse 86

So I changed line 86 in the same way and it works now.

Thanks.

begin:vcard
fn:Patrick Boutilier
n:Boutilier;Patrick
org:;Nova Scotia Department of Education
adr:;;2021 Brunswick Street;Halifax;NS;B3K 2Y5;Canada
email;internet:boutilpj@???
title:WAN Communications Specialist
tel;work:902-424-6800
tel;fax:902-424-0874
version:2.1
end:vcard

Ce message a été envoyé sur les listes de diffusion suivantes :
Exim-users
Informations sur la liste de diffusion | Messages voisins		<-Re: [exim] Tainted filename for DKIMRe: [exim] Exim 4.94 PAM SMTP auth - Taint->
Tahini and Hummus and Cumin Development Archives administré par cumin AdminsLurker (version 2.3)