From 773a7b98f9d4e0767dfdd270a339e9f31ca4edea Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Wed, 9 Jul 2008 20:54:05 +1000
Subject:  - (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAM 
   account check failure path. The vulnerable format buffer is supplied   
 from PAM and should not contain attacker-supplied data.

---
 auth1.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'auth1.c')

diff --git a/auth1.c b/auth1.c
index 834ef045..b8a25587 100644
--- a/auth1.c
+++ b/auth1.c
@@ -354,7 +354,7 @@ do_authloop(Authctxt *authctxt)
 					msg[len] = '\0';
 			else
 				msg = "Access denied.";
-			packet_disconnect(msg);
+			packet_disconnect("%s", msg);
 		}
 #endif
 
-- 
cgit v1.2.3