Prevent buffer overflow in getpwnam()

PR: bin/8176 Submitted by: Archie Cobbs <archie@whistle.com>
2026-06-11 01:30:30 -04:00 · 1998-10-29 23:16:24 +00:00 · 1998-10-29 23:16:24 +00:00 · ebed2088fe
commit ebed2088fe
parent 6c0c35eebd
1 changed files with 2 additions and 2 deletions
--- a/lib/libc/gen/getpwent.c
+++ b/lib/libc/gen/getpwent.c
@ -153,8 +153,8 @@ getpwnam(name)
 		return((struct passwd *)NULL);

 	bf[0] = _PW_KEYBYNAME;
-	len = strlen(name);
-	bcopy(name, bf + 1, MIN(len, UT_NAMESIZE));
+	len = MIN(strlen(name), UT_NAMESIZE);
+	bcopy(name, bf + 1, len);
 	key.data = (u_char *)bf;
 	key.size = len + 1;
 	rval = __hashpw(&key);