R5Reloaded/r5sdk
1
0
Fork 0
mirror of https://github.com/Mauler125/r5sdk.git synced 2025-02-09 19:15:03 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix 'CVE-2019-3823'

Browse Source 
Merge: curl/curl@39df4073e5
This commit is contained in:
Kawe Mazidjatari 2023-06-12 20:44:02 +02:00
parent a022f81bc4
commit 46f11218c6
1 changed files with 5 additions and 1 deletions

6
r5dev/thirdparty/curl/smtp.c vendored

@ -256,8 +256,12 @@ static bool smtp_endofresp(struct connectdata *conn, char *line, size_t len,
Section 4. Examples of RFC-4954 but some e-mail servers ignore this and
only send the response code instead as per Section 4.2. */
if(line[3] == ' ' || len == 5) {
char tmpline[6];
result = TRUE;
*resp = curlx_sltosi(strtol(line, NULL, 10));
memset(tmpline, '\0', sizeof(tmpline));
memcpy(tmpline, line, (len == 5 ? 5 : 3));
*resp = curlx_sltosi(strtol(tmpline, NULL, 10));
/* Make sure real server never sends internal value */
if(*resp == 1)