From 157ceadfab17753763a9d5c49f75e0d66a935c1c Mon Sep 17 00:00:00 2001 From: "Todd C. Miller" Date: Thu, 2 Sep 2021 14:15:50 -0600 Subject: [PATCH] Fix computation of the token address when handling a partial read. We want to treat it as an array of bytes, not an array of tokens. Coverity CID 240011 --- src/exec_intercept.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/exec_intercept.c b/src/exec_intercept.c index e07bb9774..4f606ba12 100644 --- a/src/exec_intercept.c +++ b/src/exec_intercept.c @@ -463,7 +463,7 @@ intercept_verify_token(int fd, struct intercept_closure *closure) ssize_t nread; debug_decl(intercept_read_token, SUDO_DEBUG_EXEC); - nread = recv(fd, &closure->token + closure->off, + nread = recv(fd, closure->token.u8 + closure->off, sizeof(closure->token) - closure->off, 0); switch (nread) { case 0: