rpcrt4: Fix copying too much data from the buffer by not taking into account the…

rpcrt4: Fix copying too much data from the buffer by not taking into account the fact that auth_pad_len has been included in the fragment length.

rpcrt4: Fix copying too much data from the buffer by not taking into account the…
dd362a62 · Robert Shearman · Alexandre Julliard · e91da145 · dd362a62
Commit dd362a62 authored May 22, 2006 by Robert Shearman Committed by Alexandre Julliard May 23, 2006
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

rpc_message.c dlls/rpcrt4/rpc_message.c +1 -1

No files found.
--- a/dlls/rpcrt4/rpc_message.c
+++ b/dlls/rpcrt4/rpc_message.c
@@ -304,7 +304,7 @@ static RPC_STATUS RPCRT4_SendAuth(RpcConnection *Connection, RpcPktHdr *Header,
    if (hdr_size == Header->common.frag_len)
      goto write;

-    memcpy(pkt + hdr_size, buffer_pos, Header->common.frag_len - hdr_size - alen);
+    memcpy(pkt + hdr_size, buffer_pos, Header->common.frag_len - hdr_size - auth_pad_len - alen);

    /* add the authorization info */
    if (Connection->AuthInfo && AuthLength)