summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
diff options
context:
space:
mode:
authorMarkus Friedl <markus@cvs.openbsd.org>2003-10-21 09:50:07 +0000
committerMarkus Friedl <markus@cvs.openbsd.org>2003-10-21 09:50:07 +0000
commit80c213a7bacbc093d3cd5928606028a4b39a2ad4 (patch)
treeeef389c4fc22c75518c97c5a413f487447c6e520 /usr.bin/ssh
parent5bc1b110cbf15ef03aac2ea31a6b42c2bbd0970b (diff)
make sure the doid is larger than 2
Diffstat (limited to 'usr.bin/ssh')
-rw-r--r--usr.bin/ssh/auth2-gss.c4
1 files changed, 3 insertions, 1 deletions
diff --git a/usr.bin/ssh/auth2-gss.c b/usr.bin/ssh/auth2-gss.c
index 75b94b00973..a82b87f5111 100644
--- a/usr.bin/ssh/auth2-gss.c
+++ b/usr.bin/ssh/auth2-gss.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth2-gss.c,v 1.3 2003/09/01 20:44:54 markus Exp $ */
+/* $OpenBSD: auth2-gss.c,v 1.4 2003/10/21 09:50:06 markus Exp $ */
/*
* Copyright (c) 2001-2003 Simon Wilkinson. All rights reserved.
@@ -79,6 +79,8 @@ userauth_gssapi(Authctxt *authctxt)
xfree(doid);
doid = packet_get_string(&len);
+ if (len <= 2)
+ packet_disconnect("Short OID received");
if (doid[0] != SSH_GSS_OIDTYPE || doid[1] != len-2) {
logit("Mechanism OID received using the old encoding form");
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-04 03:47:38 +0000