git: 879092b34214 - main - security/openvpn-auth-ldap: Fix buffer overflow in C/R function

The branch main has been updated by zi:

URL: https://cgit.FreeBSD.org/ports/commit/?id=879092b34214ee23656168436f492e1df5c6916a

commit 879092b34214ee23656168436f492e1df5c6916a
Author:     Ryan Steinmetz <zi@FreeBSD.org>
AuthorDate: 2025-02-13 16:27:16 +0000
Commit:     Ryan Steinmetz <zi@FreeBSD.org>
CommitDate: 2025-02-13 16:27:16 +0000

    security/openvpn-auth-ldap: Fix buffer overflow in C/R function
    
    Bump PORTREVISION
    Security:       e915b60e-ea25-11ef-a1c0-0050569f0b83
---
 security/openvpn-auth-ldap/Makefile                     |  2 +-
 security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c | 11 +++++++++++
 2 files changed, 12 insertions(+), 1 deletion(-)

diff --git a/security/openvpn-auth-ldap/Makefile b/security/openvpn-auth-ldap/Makefile
index d1ee27a3f7e1..1cb20112f620 100644
--- a/security/openvpn-auth-ldap/Makefile
+++ b/security/openvpn-auth-ldap/Makefile
@@ -1,6 +1,6 @@
 PORTNAME=	openvpn-auth-ldap
 PORTVERSION=	2.0.4
-PORTREVISION=	2
+PORTREVISION=	3
 DISTVERSIONPREFIX=	auth-ldap-
 CATEGORIES=	security net-vpn
 
diff --git a/security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c b/security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c
new file mode 100644
index 000000000000..b62c51f90174
--- /dev/null
+++ b/security/openvpn-auth-ldap/files/patch-src_openvpn-cr.c
@@ -0,0 +1,11 @@
+--- src/openvpn-cr.c.orig	2018-07-26 20:17:21 UTC
++++ src/openvpn-cr.c
+@@ -29,7 +29,7 @@ int extract_openvpn_cr(const char *response, openvpn_r
+ 	tokenIndexes[0] = response;
+ 	int tokenCnt = 1;
+ 	const char *p;
+-	for (p = response; *p; ++p) {
++	for (p = response; *p && tokenCnt < 15; ++p) {
+ 		if (*p == ':')
+ 			tokenIndexes[tokenCnt++] = p + 1;
+ 	}