Fix possible crash in SASL Blowfish mech

2025-02-17 15:50:30 -05:00 · 2014-11-22 20:56:15 -05:00 · 2014-11-22 20:56:15 -05:00 · 2e96f33cd4
commit 2e96f33cd4
parent df9c213bff
1 changed files with 1 additions and 1 deletions
--- a/src/common/util.c
+++ b/src/common/util.c
@ -2017,7 +2017,7 @@ encode_sasl_pass_blowfish (char *user, char *pass, char *data)
 	memset (encrypted_pass, 0, pass_len);
 	plain_pass = (char*)malloc (pass_len);
 	memset (plain_pass, 0, pass_len);
-	memcpy (plain_pass, pass, pass_len);
+	memcpy (plain_pass, pass, strlen(pass));
 	out_ptr = (char*)encrypted_pass;
 	in_ptr = (char*)plain_pass;