From a2d6efe013e175f408733970803d535908554297 Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Sat, 13 Nov 1999 13:22:46 +1100
Subject:  - Merged OpenBSD CVS changes:    - [bufaux.c] save a view
 malloc/memcpy/memset/free's, ok niels    - [scp.c] fix overflow reported by
 damien@ibs.com.au: off_t      totalsize, ok niels,aaron

---
 bufaux.c | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

(limited to 'bufaux.c')

diff --git a/bufaux.c b/bufaux.c
index 1e27e735..a1ba0fd5 100644
--- a/bufaux.c
+++ b/bufaux.c
@@ -15,7 +15,7 @@ Buffers.
 */
 
 #include "includes.h"
-RCSID("$Id: bufaux.c,v 1.4 1999/11/12 23:51:58 damien Exp $");
+RCSID("$Id: bufaux.c,v 1.5 1999/11/13 02:22:46 damien Exp $");
 
 #include "ssh.h"
 
@@ -71,10 +71,11 @@ buffer_get_bignum(Buffer *buffer, BIGNUM *value)
   bits = GET_16BIT(buf);
   /* Compute the number of binary bytes that follow. */
   bytes = (bits + 7) / 8;
-  bin = xmalloc(bytes);
-  buffer_get(buffer, bin, bytes);
+  if (buffer_len(buffer) < bytes)
+    fatal("buffer_get_bignum: input buffer too small");
+  bin = buffer_ptr(buffer);
   BN_bin2bn(bin, bytes, value);
-  xfree(bin);
+  buffer_consume(buffer, bytes);
 
   return 2 + bytes;
 }
-- 
cgit v1.2.3