CVSROOT: /cvs Module name: src Changes by: tob...@cvs.openbsd.org 2023/05/08 11:15:43
Modified files:
usr.bin/passwd : local_passwd.c
Log message:
Prevent signed integer overflow
A signed integer overflow could occur after INT_MAX bad password
attempts. Check for unlimited tries first and then increment the
counter. Also consider INT_MAX to be a valid upper limit.
ok millert@
