From 32a66a8e93626df3e1fa9dcee0a6046033c4c692 Mon Sep 17 00:00:00 2001
From: Denis Vlasenko
Date: Sat, 30 Jun 2007 15:06:45 +0000
Subject: wget: fix buffer overflow in HTTP auth

---
 networking/wget.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'networking/wget.c')

diff --git a/networking/wget.c b/networking/wget.c
index 2c060d7..c06a09d 100644
--- a/networking/wget.c
+++ b/networking/wget.c
@@ -267,11 +267,11 @@ int wget_main(int argc, char **argv)
 #if ENABLE_FEATURE_WGET_AUTHENTICATION
 			if (target.user) {
 				fprintf(sfp, "Authorization: Basic %s\r\n",
-					base64enc((unsigned char*)target.user, buf, sizeof(buf)));
+					base64enc((unsigned char*)target.user, buf, strlen(target.user)));
 			}
 			if (use_proxy && server.user) {
 				fprintf(sfp, "Proxy-Authorization: Basic %s\r\n",
-					base64enc((unsigned char*)server.user, buf, sizeof(buf)));
+					base64enc((unsigned char*)server.user, buf, strlen(server.user)));
 			}
 #endif
 
-- 
cgit v1.1