<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<a class="moz-txt-link-freetext" href="https://fedorahosted.org/389/ticket/47939">https://fedorahosted.org/389/ticket/47939</a><br>
<br>
<a class="moz-txt-link-freetext" href="https://fedorahosted.org/389/attachment/ticket/47939/0001-Ticket-47939-Malformed-cookie-for-LDAP-Sync-makes-DS.patch">https://fedorahosted.org/389/attachment/ticket/47939/0001-Ticket-47939-Malformed-cookie-for-LDAP-Sync-makes-DS.patch</a><br>
<br>
Note: I added additional check for the cookie_change_info value. If
non-digit is given, it is now releasing Sync_Cookie and return NULL.<br>
<blockquote>* Format of cookie:
server_signature#client_signature#change_info_number<br>
</blockquote>
--- a/ldap/servers/plugins/sync/sync_util.c<br>
+++ b/ldap/servers/plugins/sync/sync_util.c<br>
@@ -574,21 +574,32 @@ sync_cookie_parse (char *cookie)<br>
*p = '\0';<br>
sc->cookie_client_signature = slapi_ch_strdup(q);<br>
sc->cookie_change_info = sync_number2int(p+1);<br>
+ if (sc->cookie_change_info < 0) {<br>
+ goto error_return;<br>
+ }<br>
<br>
</body>
</html>