rampart_crypto_sha1 method uses sprintf to copy binary data. It should be
modified.
-----------------------------------------------------------------------------------
Key: RAMPARTC-59
URL: https://issues.apache.org/jira/browse/RAMPARTC-59
Project: Rampart/C
Issue Type: Bug
Components: Rampart-core
Affects Versions: 1.1.0
Environment: N/A
Reporter: S.Uthaiyashankar
Assignee: S.Uthaiyashankar
Fix For: 1.2.0
sprintf is used to concatenate decoded nonce and password. When nonce is having
null character in the middle, it will fail. memcpy has to be used instead.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
