From eace53f558e10d2879efd2512f579ef4a9a8ba16 Mon Sep 17 00:00:00 2001 From: Tom Yu Date: Fri, 12 Mar 1999 12:35:56 +0000 Subject: [PATCH] * ftpd.c (user): Remove extra "%s" in call to sprintf() to avoid dereferencing stack garbage. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11268 dc483132-0cff-0310-8789-dd5450dbe970 --- src/appl/gssftp/ftpd/ChangeLog | 5 +++++ src/appl/gssftp/ftpd/ftpd.c | 2 +- 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/src/appl/gssftp/ftpd/ChangeLog b/src/appl/gssftp/ftpd/ChangeLog index fd44a6077..ead623aef 100644 --- a/src/appl/gssftp/ftpd/ChangeLog +++ b/src/appl/gssftp/ftpd/ChangeLog @@ -1,3 +1,8 @@ +Fri Mar 12 07:35:01 1999 Tom Yu + + * ftpd.c (user): Remove extra "%s" in call to sprintf() to avoid + dereferencing stack garbage. + Mon Mar 8 23:47:51 1999 Tom Yu * ftpd.M: Resync with reality. diff --git a/src/appl/gssftp/ftpd/ftpd.c b/src/appl/gssftp/ftpd/ftpd.c index 71709dcea..f880734a5 100644 --- a/src/appl/gssftp/ftpd/ftpd.c +++ b/src/appl/gssftp/ftpd/ftpd.c @@ -765,7 +765,7 @@ user(name) #ifdef KRB5_KRB4_COMPAT if (auth_type && strcmp(auth_type, "KERBEROS_V4") == 0) { authorized = kuserok(&kdata,name) == 0; - sprintf(buf, "Kerberos user %s%s%s@%s is%s authorized as %s%s", + sprintf(buf, "Kerberos user %s%s%s@%s is%s authorized as %s", kdata.pname, *kdata.pinst ? "." : "", kdata.pinst, kdata.prealm, authorized ? "" : " not", name); -- 2.26.2