projects
/
claws.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
08ed404
)
RSSyl: zero out password variables after migration to password store
author
Andrej Kacian
<ticho@claws-mail.org>
Sat, 2 Apr 2016 15:07:35 +0000
(17:07 +0200)
committer
Andrej Kacian
<ticho@claws-mail.org>
Sat, 2 Apr 2016 15:07:35 +0000
(17:07 +0200)
src/plugins/rssyl/rssyl.c
patch
|
blob
|
history
diff --git
a/src/plugins/rssyl/rssyl.c
b/src/plugins/rssyl/rssyl.c
index 22f2260b6f99fd9472a2bda178ae31a56e52c1e4..139f5af0fd06349d9b8941d069f92f831e837c07 100644
(file)
--- a/
src/plugins/rssyl/rssyl.c
+++ b/
src/plugins/rssyl/rssyl.c
@@
-290,7
+290,10
@@
static void rssyl_item_set_xml(Folder *folder, FolderItem *item, XMLTag *tag)
if (!strcmp(attr->name, "auth_pass")) {
gsize len = 0;
guchar *pwd = g_base64_decode(attr->value, &len);
+ memset(attr->value, 0, strlen(attr->value));
rssyl_passwd_set(ritem, (gchar *)pwd);
+ memset(pwd, 0, strlen(pwd));
+ g_free(pwd);
}
/* (str) Official title */
if( !strcmp(attr->name, "official_title")) {