From 6dc841042332c9af145a062fba1b75b2dc2931fb Mon Sep 17 00:00:00 2001
From: Johan Danielsson <joda@pdc.kth.se>
Date: Mon, 21 Oct 2002 15:12:59 +0000
Subject: [PATCH] check that %-quotes are followed by two hex digits

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11509 ec53bebd-3082-4978-b11e-865c3cabbd6b
---
 kdc/connect.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kdc/connect.c b/kdc/connect.c
index deb772e3c..c7b9c6d8c 100644
--- a/kdc/connect.c
+++ b/kdc/connect.c
@@ -493,7 +493,7 @@ de_http(char *buf)
 {
     char *p, *q;
     for(p = q = buf; *p; p++, q++) {
-	if(*p == '%') {
+	if(*p == '%' && isxdigit(p[1]) && isxdigit(p[2])) {
 	    unsigned int x;
 	    if(sscanf(p + 1, "%2x", &x) != 1)
 		return -1;