- djm@cvs.openbsd.org 2011/12/07 05:44:38

     [auth2.c dh.c packet.c roaming.h roaming_client.c roaming_common.c]
     fix some harmless and/or unreachable int overflows;
     reported Xi Wang, ok markus@

1 files changed, 2 insertions, 2 deletions

diff --git a/auth2.c b/auth2.c
index c06c95f06..b66bef64c 100644
--- a/auth2.c
+++ b/auth2.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth2.c,v 1.123 2011/03/10 02:52:57 djm Exp $ */
+/* $OpenBSD: auth2.c,v 1.124 2011/12/07 05:44:38 djm Exp $ */
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
  *
@@ -113,7 +113,7 @@ auth2_read_banner(void)
                 close(fd);
                 return (NULL);
         }
-        if (st.st_size > 1*1024*1024) {
+        if (st.st_size <= 0 || st.st_size > 1*1024*1024) {
                 close(fd);
                 return (NULL);
         }