[exim-cvs] SECURITY: Leave a clean smtp_out input buffer eve…

Αρχική Σελίδα
Delete this message
Reply to this message
Συντάκτης: Exim Git Commits Mailing List
Ημερομηνία:  
Προς: exim-cvs
Αντικείμενο: [exim-cvs] SECURITY: Leave a clean smtp_out input buffer even in case of read error
Gitweb: https://git.exim.org/exim.git/commitdiff/60482d5517a46f8ee1629f58b39e6897b9b27a98
Commit:     60482d5517a46f8ee1629f58b39e6897b9b27a98
Parent:     6f97d821f13060b234c3d272d7672558bb2365ae
Author:     Heiko Schlittermann (HS12-RIPE) <hs@???>
AuthorDate: Tue Mar 30 22:48:06 2021 +0200
Committer:  Heiko Schlittermann (HS12-RIPE) <hs@???>
CommitDate: Thu May 27 21:30:55 2021 +0200


    SECURITY: Leave a clean smtp_out input buffer even in case of read error


    Based on Heiko Schlittermann's commit 54895bc3. This fixes:


    7/ In src/smtp_out.c, read_response_line(), inblock->ptr is not updated
    when -1 is returned. This does not seem to have bad consequences, but is
    maybe not the intended behavior.


    (cherry picked from commit 30f5d98786fb4e6ccfdd112fe65c153f0ee34c5f)
    (cherry picked from commit d600f6c4d0c5d33e3988dfbfee248ff6a1536673)
---
 src/src/smtp_out.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)


diff --git a/src/src/smtp_out.c b/src/src/smtp_out.c
index eae74da..f103c27 100644
--- a/src/src/smtp_out.c
+++ b/src/src/smtp_out.c
@@ -472,7 +472,7 @@ if (ob->socks_proxy)
   {
   int sock = socks_sock_connect(sc->host, sc->host_af, port, sc->interface,
                 sc->tblock, ob->connect_timeout);
-
+  
   if (sock >= 0)
     {
     if (early_data && early_data->data && early_data->len)
@@ -759,6 +759,7 @@ for (;;)
 /* Get here if there has been some kind of recv() error; errno is set, but we
 ensure that the result buffer is empty before returning. */


+inblock->ptr = inblock->ptrend = inblock->buffer;
*buffer = 0;
return -1;
}