From 4d1c1b23e1373bbd4e72f524e855f1db076d2c73 Mon Sep 17 00:00:00 2001
From: Sergei Golubchik <serg@mariadb.org>
Date: Fri, 17 Jan 2020 15:08:11 +0100
Subject: Bug#29630767 - USE OF UNINITIALIZED VALUE IN LIBMYSQL (CLIENT.CC
 FUNCTION RUN_PLUGIN_AUTH)

---
 sql-common/client.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'sql-common')

diff --git a/sql-common/client.c b/sql-common/client.c
index f535b5119b7..c7fb70fbeef 100644
--- a/sql-common/client.c
+++ b/sql-common/client.c
@@ -3538,7 +3538,10 @@ CLI_MYSQL_REAL_CONNECT(MYSQL *mysql,const char *host, const char *user,
       scramble_data_len= pkt_scramble_len;
       scramble_plugin= scramble_data + scramble_data_len;
       if (scramble_data + scramble_data_len > pkt_end)
-        scramble_data_len= pkt_end - scramble_data;
+      {
+        set_mysql_error(mysql, CR_MALFORMED_PACKET, unknown_sqlstate);
+        goto error;
+      }
     }
     else
     {
-- 
cgit v1.2.1