From ac5ff30ae19ff6f7473f23c0d36d94301124b150 Mon Sep 17 00:00:00 2001
From: nectar <nectar@FreeBSD.org>
Date: Wed, 17 Sep 2003 15:10:36 +0000
Subject: Correct address parsing bug that is believed to be remotely
 exploitable.

Submitted by:	Michal Zalewski <lcamtuf@dione.ids.pl>
---
 contrib/sendmail/src/parseaddr.c | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'contrib/sendmail/src')

diff --git a/contrib/sendmail/src/parseaddr.c b/contrib/sendmail/src/parseaddr.c
index 6acc86d..8128171 100644
--- a/contrib/sendmail/src/parseaddr.c
+++ b/contrib/sendmail/src/parseaddr.c
@@ -700,7 +700,11 @@ prescan(addr, delim, pvpbuf, pvpbsize, delimptr, toktab)
 						addr[MAXNAME] = '\0';
 	returnnull:
 					if (delimptr != NULL)
+					{
+						if (p > addr)
+							p--;
 						*delimptr = p;
+					}
 					CurEnv->e_to = saveto;
 					return NULL;
 				}
-- 
cgit v1.1