summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/auth2-gss.c
diff options
context:
space:
mode:
authormarkus <markus@openbsd.org>2003-10-21 09:50:06 +0000
committermarkus <markus@openbsd.org>2003-10-21 09:50:06 +0000
commit605fa33a3ff76d9818dfbe1b3c7de2956bb5f00c (patch)
treeb91eac8fc5f763fd653588fda6072c40e054ac81 /usr.bin/ssh/auth2-gss.c
parenttypos from Tom Cosgrove; (diff)
downloadwireguard-openbsd-605fa33a3ff76d9818dfbe1b3c7de2956bb5f00c.tar.xz
wireguard-openbsd-605fa33a3ff76d9818dfbe1b3c7de2956bb5f00c.zip
make sure the doid is larger than 2
Diffstat (limited to 'usr.bin/ssh/auth2-gss.c')
-rw-r--r--usr.bin/ssh/auth2-gss.c4
1 files changed, 3 insertions, 1 deletions
diff --git a/usr.bin/ssh/auth2-gss.c b/usr.bin/ssh/auth2-gss.c
index 75b94b00973..a82b87f5111 100644
--- a/usr.bin/ssh/auth2-gss.c
+++ b/usr.bin/ssh/auth2-gss.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth2-gss.c,v 1.3 2003/09/01 20:44:54 markus Exp $ */
+/* $OpenBSD: auth2-gss.c,v 1.4 2003/10/21 09:50:06 markus Exp $ */
/*
* Copyright (c) 2001-2003 Simon Wilkinson. All rights reserved.
@@ -79,6 +79,8 @@ userauth_gssapi(Authctxt *authctxt)
xfree(doid);
doid = packet_get_string(&len);
+ if (len <= 2)
+ packet_disconnect("Short OID received");
if (doid[0] != SSH_GSS_OIDTYPE || doid[1] != len-2) {
logit("Mechanism OID received using the old encoding form");
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.