thr3ads.net - openssh unix dev - openssh-1.2.2 bug/patch [Mar 2000]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Bob Manson

2000-Mar-06 06:19 UTC

openssh-1.2.2 bug/patch

sshd can free a buffer twice in some circumstances; here's a patch.
(causes sshd to crash under linux; a similar fix is probably needed
for the pam code, btw)

--- sshd.c~	Tue Jan 25 16:07:22 2000
+++ sshd.c	Sun Mar  5 22:14:40 2000
@@ -1525,7 +1525,10 @@
 		}
 
 		if (client_user != NULL)
+		  {
 			xfree(client_user);
+			client_user = NULL;
+		  }
 
 		if (attempt > AUTH_FAIL_MAX)
 			packet_disconnect(AUTH_FAIL_MSG, pw->pw_name);

Seemingly Similar Threads

Serious Bug Report: OpenSSH
[Colin Watson <cjw44@cam.ac.uk>] Bug#49902: [PATCH] Bug#49902: ssh and pam conspire to deny logins
AIX openssh patches
AIX authenticate patches
minor aix patch to auth1.c

Search for more apparently analagous threads

openssh unix dev - Mar 2000 - openssh-1.2.2 bug/patch

openssh-1.2.2 bug/patch

Seemingly Similar Threads

Wisdom of the Ancients