Overview

File freerdp-CVE-2024-32661.patch of Package freerdp.34872

From 3cbb4ac30b581aec7cdd287cdad81a1f2733be8f Mon Sep 17 00:00:00 2001
From: akallabeth <akallabeth@posteo.net>
Date: Sun, 21 Apr 2024 13:56:13 +0200
Subject: [PATCH] [core,info] fix missing check in rdp_write_logon_info_v1

---
 libfreerdp/core/info.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/libfreerdp/core/info.c b/libfreerdp/core/info.c
index 9aaa6cff6..3aa4e95b9 100644
--- a/libfreerdp/core/info.c
+++ b/libfreerdp/core/info.c
@@ -1324,6 +1324,10 @@ static BOOL rdp_write_logon_info_v1(wStream* s, logon_info* info)
 	/* domain */
 	ilen = ConvertToUnicode(CP_UTF8, 0, info->domain, -1, &wString, 0);
 
+	WINPR_ASSERT(info);
+	if (!info->domain || !info->username)
+		return FALSE;
+
 	if (ilen < 0)
 		return FALSE;
 
-- 
2.45.0
openSUSE Build Service is sponsored by
Places