pam_exec: fix stack overflow on \0 output

If an executed program prints \0 at the beginning of a line, then
pam_exec triggers an out of boundary read (and possible) write on
the stack.

Signed-off-by: Tobias Stoeckmann <tobias@stoeckmann.org>

1 files changed, 1 insertions, 1 deletions

diff --git a/modules/pam_exec/pam_exec.c b/modules/pam_exec/pam_exec.c
index 9d2145dc..41f6c589 100644
--- a/modules/pam_exec/pam_exec.c
+++ b/modules/pam_exec/pam_exec.c
@@ -274,7 +274,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh,
 	    {
 	      size_t len;
 	      len = strlen(buf);
-	      if (buf[len-1] == '\n')
+	      if (len > 0 && buf[len-1] == '\n')
 		buf[len-1] = '\0';
 	      pam_info(pamh, "%s", buf);
 	    }