<html>
  <head>
    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <a class="moz-txt-link-freetext" href="https://fedorahosted.org/389/ticket/47939">https://fedorahosted.org/389/ticket/47939</a><br>
    <br>
<a class="moz-txt-link-freetext" href="https://fedorahosted.org/389/attachment/ticket/47939/0001-Ticket-47939-Malformed-cookie-for-LDAP-Sync-makes-DS.patch">https://fedorahosted.org/389/attachment/ticket/47939/0001-Ticket-47939-Malformed-cookie-for-LDAP-Sync-makes-DS.patch</a><br>
    <br>
    Note: I added additional check for the cookie_change_info value.  If
    non-digit is given, it is now releasing Sync_Cookie and return NULL.<br>
    <blockquote>* Format of cookie:
      server_signature#client_signature#change_info_number<br>
    </blockquote>
    --- a/ldap/servers/plugins/sync/sync_util.c<br>
    +++ b/ldap/servers/plugins/sync/sync_util.c<br>
    @@ -574,21 +574,32 @@ sync_cookie_parse (char *cookie)<br>
                *p = '\0';<br>
                sc-&gt;cookie_client_signature = slapi_ch_strdup(q);<br>
                sc-&gt;cookie_change_info = sync_number2int(p+1);<br>
    +           if (sc-&gt;cookie_change_info &lt; 0) {<br>
    +               goto error_return;<br>
    +           }<br>
    <br>
  </body>
</html>