security/openvpn-auth-ldap: Fix buffer overflow in C/R function

Bump PORTREVISION Security: e915b60e-ea25-11ef-a1c0-0050569f0b83
author: Ryan Steinmetz <zi@FreeBSD.org> 2025-02-13 11:27:16 -0500
committer: Ryan Steinmetz <zi@FreeBSD.org> 2025-02-13 11:27:16 -0500
commit: 879092b34214ee23656168436f492e1df5c6916a (patch)
tree: bb5b24153d19c71e7c4d8a324097c216042763b3 /security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c
parent: security/vuxml: Document vulnerability in security/openvpn-auth-ldap (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c b/security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c
new file mode 100644
index 000000000000..b62c51f90174
--- /dev/null
+++ b/security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c
@@ -0,0 +1,11 @@
+--- src/openvpn-cr.c.orig	2018-07-26 20:17:21 UTC
++++ src/openvpn-cr.c
+@@ -29,7 +29,7 @@ int extract_openvpn_cr(const char *response, openvpn_r
+ 	tokenIndexes[0] = response;
+ 	int tokenCnt = 1;
+ 	const char *p;
+-	for (p = response; *p; ++p) {
++	for (p = response; *p && tokenCnt < 15; ++p) {
+ 		if (*p == ':')
+ 			tokenIndexes[tokenCnt++] = p + 1;
+ 	}
author	Ryan Steinmetz <zi@FreeBSD.org>	2025-02-13 11:27:16 -0500
committer	Ryan Steinmetz <zi@FreeBSD.org>	2025-02-13 11:27:16 -0500
commit	879092b34214ee23656168436f492e1df5c6916a (patch)
tree	bb5b24153d19c71e7c4d8a324097c216042763b3 /security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c
parent	security/vuxml: Document vulnerability in security/openvpn-auth-ldap (diff)