Null Pointer Dereference at mech-digest-md5.c:481 |
No properties have been set. edit properties |
Jump to warning location ↓ | warning details... |
| |
parse_digest_response (/home/sate/Testcases/c/cve/dovecot-1.2.0/src/auth/mech-digest-md5.c)![]() | ||||||
![]() | ||||||
450 | static bool parse_digest_response(struct digest_auth_request *request, | |||||
451 | const unsigned char *data, size_t size, | |||||
452 | const char **error) | |||||
453 | { | |||||
454 | char *copy, *key, *value; | |||||
455 | bool failed; | |||||
456 | ||||||
457 | /* | |||||
458 | realm="realm" | |||||
459 | username="username" | |||||
460 | nonce="randomized data" | |||||
461 | cnonce="??" | |||||
462 | nc=00000001 | |||||
463 | qop="auth|auth-int|auth-conf" | |||||
464 | digest-uri="serv-type/host[/serv-name]" | |||||
465 | response=32 HEX digits | |||||
466 | maxbuf=number (with auth-int, auth-conf, defaults to 64k) | |||||
467 | charset="utf-8" (iso-8859-1 if it doesn't exist) | |||||
468 | cipher="cipher-value" | |||||
469 | authzid="authzid-value" | |||||
470 | */ | |||||
471 | ||||||
472 | *error = NULL; | |||||
473 | failed = FALSE; | |||||
474 | ||||||
475 | if (size == 0) { | |||||
476 | *error = "Client sent no input"; | |||||
477 | return FALSE; | |||||
478 | } | |||||
479 | ||||||
480 | [+] | copy = t_strdup_noconst(t_strndup(data, size)); | ||||
481 | while (*copy != '\0') {
| |||||
![]() |