Upgrade to OpenSSH 5.9p1.

MFC after: 3 months
author: des <des@FreeBSD.org> 2011-10-05 22:08:17 +0000
committer: des <des@FreeBSD.org> 2011-10-05 22:08:17 +0000
commit: 038442ad80c21a07c19532a176030e2ca51fdd9d (patch)
tree: 654e40360db9b6bb67928b3a5c1b5dbd84925000 /crypto/openssh/gss-serv.c
parent: 2276ee273397e0ccd5c7911848e3de9bd91fb1c2 (diff)
parent: a9c7316f0b012b7e85d1a1c4d8b6ce36b9fd9604 (diff)
download: FreeBSD-src-038442ad80c21a07c19532a176030e2ca51fdd9d.zip
FreeBSD-src-038442ad80c21a07c19532a176030e2ca51fdd9d.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/crypto/openssh/gss-serv.c b/crypto/openssh/gss-serv.c
index 2ec7ea1..c719c13 100644
--- a/crypto/openssh/gss-serv.c
+++ b/crypto/openssh/gss-serv.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: gss-serv.c,v 1.22 2008/05/08 12:02:23 djm Exp $ */
+/* $OpenBSD: gss-serv.c,v 1.23 2011/08/01 19:18:15 markus Exp $ */
 
 /*
  * Copyright (c) 2001-2003 Simon Wilkinson. All rights reserved.
@@ -229,6 +229,8 @@ ssh_gssapi_parse_ename(Gssctxt *ctx, gss_buffer_t ename, gss_buffer_t name)
 	name->length = get_u32(tok+offset);
 	offset += 4;
 
+	if (UINT_MAX - offset < name->length)
+		return GSS_S_FAILURE;
 	if (ename->length < offset+name->length)
 		return GSS_S_FAILURE;
author	des <des@FreeBSD.org>	2011-10-05 22:08:17 +0000
committer	des <des@FreeBSD.org>	2011-10-05 22:08:17 +0000
commit	038442ad80c21a07c19532a176030e2ca51fdd9d (patch)
tree	654e40360db9b6bb67928b3a5c1b5dbd84925000 /crypto/openssh/gss-serv.c
parent	2276ee273397e0ccd5c7911848e3de9bd91fb1c2 (diff)
parent	a9c7316f0b012b7e85d1a1c4d8b6ce36b9fd9604 (diff)
download	FreeBSD-src-038442ad80c21a07c19532a176030e2ca51fdd9d.zip FreeBSD-src-038442ad80c21a07c19532a176030e2ca51fdd9d.tar.gz