File apache2-CVE-2017-9788.patch of Package apache2.18661

--- 2.4.x/modules/aaa/mod_auth_digest.c	2017/07/05 23:53:42	1800954
+++ 2.4.x/modules/aaa/mod_auth_digest.c	2017/07/06 00:02:54	1800955
@@ -965,13 +965,13 @@
 
         /* find value */
 
+        vv = 0;
         if (auth_line[0] == '=') {
             auth_line++;
             while (apr_isspace(auth_line[0])) {
                 auth_line++;
             }
 
-            vv = 0;
             if (auth_line[0] == '\"') {         /* quoted string */
                 auth_line++;
                 while (auth_line[0] != '\"' && auth_line[0] != '\0') {
@@ -990,8 +990,8 @@
                     value[vv++] = *auth_line++;
                 }
             }
-            value[vv] = '\0';
         }
+        value[vv] = '\0';
 
         while (auth_line[0] != ',' && auth_line[0] != '\0') {
             auth_line++;

openSUSE Build Service is sponsored by