Patch by Robert Scheck <robert@fedoraproject.org> for Zarafa <= 7.1.8 which adds a check
to avoid a NULL pointer segfault. At least a Fedora build with this patch can no longer be
crashed. See https://bugzilla.redhat.com/show_bug.cgi?id=1059903 for further information.
Please do not confuse https://bugzilla.redhat.com/show_bug.cgi?id=1056767 with this patch.
--- zarafa-7.1.8/provider/libserver/ECSession.cpp 2014-01-21 15:38:53.000000000 +0100
+++ zarafa-7.1.8/provider/libserver/ECSession.cpp.rsc 2014-01-29 01:26:49.000000000 +0100
@@ -865,10 +865,10 @@
{
ECRESULT er = erSuccess;
- if (!lpszName)
+ if (!lpszName || !lpszPassword)
{
// Commandment 2: Thou shalt not follow the NULL pointer, for chaos and madness await thee at its end.
- m_lpSessionManager->GetLogger()->Log(EC_LOGLEVEL_FATAL, "Invalid argument lpszName in call to ECAuthSession::ValidateUserLogon()");
+ m_lpSessionManager->GetLogger()->Log(EC_LOGLEVEL_FATAL, "Invalid argument %s in call to ECAuthSession::ValidateUserLogon()", (!lpszName) ? "lpszName" : "lpszPassword");
er = ZARAFA_E_INVALID_PARAMETER;
goto exit;
}