Merge pull request #135 from gm4tr1x/master

Fixed a buffer overflow in ascii_digest for hash type 8300
2024-12-17 12:18:24 +00:00 · 2016-01-17 22:29:12 +01:00 · 2016-01-17 22:29:12 +01:00 · 44b0cb4e65
commit 44b0cb4e65
parent 3fdb930cf3 29636ca0a3
1 changed files with 3 additions and 5 deletions
--- a/src/shared.c
+++ b/src/shared.c
@ -7109,11 +7109,9 @@ void ascii_digest (char out_buf[4096], uint salt_pos, uint digest_pos)
  }
  else if (hash_mode == 8300)
  {
-    // todo
+    char digest_buf_c[34] = { 0 };
-    char digest_buf_c[33];
+    base32_encode (int_to_itoa32, (const u8 *) digest_buf, 20, (u8 *) digest_buf_c);
    base32_encode (int_to_itoa32, (const u8 *) digest_buf, 32, (u8 *) digest_buf_c);
    digest_buf_c[32] = 0;
@ -7121,7 +7119,7 @@ void ascii_digest (char out_buf[4096], uint salt_pos, uint digest_pos)
    const uint salt_pc_len = salt.salt_buf_pc[7]; // what a hack
-    char domain_buf_c[33];
+    char domain_buf_c[33] = { 0 };
    memcpy (domain_buf_c, (char *) salt.salt_buf_pc, salt_pc_len);