From 61b729e84bcc908317ca877bc1377b6e43e724fe Mon Sep 17 00:00:00 2001 From: cem Date: Wed, 11 May 2016 16:54:34 +0000 Subject: bsnmp: Don't overrun privkey buffer by copying wrong size The 'priv_key' array is SNMP_PRIV_KEY_SIZ bytes, not SNMP_AUTH_KEY_SIZ. Reported by: Coverity CIDs: 1008326, 1009675 Sponsored by: EMC / Isilon Storage Division --- contrib/bsnmp/snmp_usm/usm_snmp.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'contrib/bsnmp/snmp_usm') diff --git a/contrib/bsnmp/snmp_usm/usm_snmp.c b/contrib/bsnmp/snmp_usm/usm_snmp.c index d5350bc..d43baa9 100644 --- a/contrib/bsnmp/snmp_usm/usm_snmp.c +++ b/contrib/bsnmp/snmp_usm/usm_snmp.c @@ -360,7 +360,7 @@ op_usm_users(struct snmp_context *ctx, struct snmp_value *val, case LEAF_usmUserPrivKeyChange: case LEAF_usmUserOwnPrivKeyChange: memcpy(uuser->suser.priv_key, ctx->scratch->ptr1, - SNMP_AUTH_KEY_SIZ); + SNMP_PRIV_KEY_SIZ); free(ctx->scratch->ptr1); break; case LEAF_usmUserPublic: -- cgit v1.1