Security fix in AuthenticationClient (#729)

meravingen123 · web-flow · commit 082415a5a05f · 2020-03-23T15:29:52.000+03:00
Fixed possible stack overflow while copying data
from string in AuthenticationClient::Impl::SignInFederated

Resolves: OLPEDGE-1716

Signed-off-by: Serhii Lozynskyi &lt;ext-serhii.lozynskyi@here.com&gt;
diff --git a/olp-cpp-sdk-authentication/src/AuthenticationClient.cpp b/olp-cpp-sdk-authentication/src/AuthenticationClient.cpp
@@ -615,7 +615,7 @@ client::CancellationToken AuthenticationClient::Impl::SignInFederated(
     AuthenticationClient::SignInUserCallback callback) {
   auto payload =
       std::make_shared<std::vector<unsigned char>>(request_body.size());
-  std::memcpy(payload->data(), request_body.data(), request_body.size());
+  std::memcpy(payload->data(), request_body.data(), payload->size());
   return HandleUserRequest(credentials, kOauthEndpoint, payload, callback);
 }
 

Original file line number	Diff line number	Diff line change
`@@ -615,7 +615,7 @@ client::CancellationToken AuthenticationClient::Impl::SignInFederated(`
`615`	`615`	`AuthenticationClient::SignInUserCallback callback) {`
`616`	`616`	`auto payload =`
`617`	`617`	`std::make_shared<std::vector<unsigned char>>(request_body.size());`
`618`		`- std::memcpy(payload->data(), request_body.data(), request_body.size());`
	`618`	`+ std::memcpy(payload->data(), request_body.data(), payload->size());`
`619`	`619`	`return HandleUserRequest(credentials, kOauthEndpoint, payload, callback);`
`620`	`620`	`}`
`621`	`621`