fix missing braces in an_to_ln.c security patch

	* an_to_ln.c (do_replacement): Patch from Bill Dodd to fix missing
	braces in previous security patch.

ticket: new
tags: pullup
target_version: 1.3.4
version_reported: 1.3.4
component: krb5-libs

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16384 dc483132-0cff-0310-8789-dd5450dbe970

diff --git a/src/lib/krb5/os/ChangeLog b/src/lib/krb5/os/ChangeLog
index 790bc2f2b494bd0e84a7aaeabd5f7ef04ebbe3c3..a0d6496551082d6acea0e598a4c45dd64fb32ad2 100644 (file)
--- a/src/lib/krb5/os/ChangeLog
+++ b/src/lib/krb5/os/ChangeLog
@@ -1,3 +1,8 @@
+2004-06-02  Tom Yu  <tlyu@mit.edu>
+
+       * an_to_ln.c (do_replacement): Patch from Bill Dodd to fix missing
+       braces in previous security patch.
+
 2004-06-01  Sam Hartman  <hartmans@mit.edu>
 
        * an_to_ln.c (rule_an_to_ln): Fix buffer overflow when parsing

diff --git a/src/lib/krb5/os/an_to_ln.c b/src/lib/krb5/os/an_to_ln.c
index c134cafcfc848dfb5367ac7c66ad0161e065dc1b..2430b27e2757f5c98ffd08960b4c653370b45611 100644 (file)
--- a/src/lib/krb5/os/an_to_ln.c
+++ b/src/lib/krb5/os/an_to_ln.c
@@ -340,9 +340,10 @@ do_replacement(char *regexp, char *repl, int doall, char *in, char *out)
            strncpy(op, repl, MAX_FORMAT_BUFFER - 1 - (op - out));
            op += strlen(repl);
            cp += edispl;
-           if (!doall)
+           if (!doall) {
                use_bytes(strlen(cp));
                strncpy(op, cp, MAX_FORMAT_BUFFER - 1 - (op - out));
+           }
            matched = 1;
        }
        else {