CVE-2012-4560: Fix a write one past the end of the 'u' buffer.

2026-02-04 20:30:38 +09:00 · 2012-10-05 11:37:09 +02:00
parent e3d9501b31
commit 64fca8a7ed
1 changed files with 1 additions and 1 deletions
--- a/src/misc.c
+++ b/src/misc.c
@@ -655,7 +655,7 @@ char *ssh_path_expand_tilde(const char *d) {
        size_t s = p - d;
        char u[128];

-        if (s > sizeof(u)) {
+        if (s >= sizeof(u)) {
            return NULL;
        }
        memcpy(u, d, s);