pam_listfile: fix pointer misuse leading to data corruption - pam.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Cyril Duval <cyril.duval@diabolocom.com>	2022-11-23 15:20:38 +0100
committer	Dmitry V. Levin <ldv@altlinux.org>	2023-01-18 11:03:40 +0000
commit	58cb830da11e54bcc0116a4b5b1afd3e45a08482 (patch)
tree	9ff12a227e91d66775b8083402b405bffe97b31b /.github
parent	cf2fc5ff7b4a8555fda2a5ebe5f6ab0e45c22996 (diff)
download	pam-58cb830da11e54bcc0116a4b5b1afd3e45a08482.tar.gz pam-58cb830da11e54bcc0116a4b5b1afd3e45a08482.tar.bz2 pam-58cb830da11e54bcc0116a4b5b1afd3e45a08482.zip

pam_listfile: fix pointer misuse leading to data corruption

pam_listfile assumes the group being tested will be written at the end of the argument list by carrying only a pointer to the value being examined in 'myval'. Therefore example ''' auth required pam_listfile.so \ onerr=succeed apply=ftp item=user sense=deny file=/etc/ftpusers ''' modified from https://linux.die.net/man/8/pam_listfile is not working because 'apply_val' will point to the latest value of 'myval', which in this case will be "/etc/ftpusers" instead of "ftp". Fix this issue by copying the value of 'myval' instead of just taking a reference pointer. Signed-off-by: Cyril Duval <cyril.duval@diabolocom.com>

Diffstat (limited to '.github')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: