Viktor Szakats a6a9093b39 userauth: avoid oob with huge interactive kbd response ...

- If the length of a response is `UINT_MAX - 3` or larger, an unsigned
  integer overflow occurs on 64-bit systems. Avoid such truncation to
  always allocate enough memory to avoid subsequent out of boundary
  writes.

  Patch-by: Tobias Stoeckmann

- also add FIXME to bump up length field to `size_t` (ABI break)

Closes #1337

2024-03-29 09:11:40 +00:00

..

libssh2_publickey.h

provide SPDX identifiers

2023-06-07 08:18:55 +02:00

libssh2_sftp.h

libssh2.h: use _WIN32 for Windows detection instead of rolling our own

2023-11-22 13:10:54 +00:00

libssh2.h

userauth: avoid oob with huge interactive kbd response

2024-03-29 09:11:40 +00:00