Fix NULL dereference with "sudo -g group" when the sudoers rule has

author Todd C. Miller <Todd.Miller@courtesan.com>

Tue, 4 Jan 2011 17:44:39 +0000 (12:44 -0500)

committer Todd C. Miller <Todd.Miller@courtesan.com>

Tue, 4 Jan 2011 17:44:39 +0000 (12:44 -0500)
author Todd C. Miller <Todd.Miller@courtesan.com>
Tue, 4 Jan 2011 17:44:39 +0000 (12:44 -0500)
committer Todd C. Miller <Todd.Miller@courtesan.com>
Tue, 4 Jan 2011 17:44:39 +0000 (12:44 -0500)
diff --git a/plugins/sudoers/match.c b/plugins/sudoers/match.c

index 4a245422fdc513be1910b5fad6abdb224880eb70..0f74d61da9b436ab60c3c6d2695b8c549dd9365a 100644 (file)
--- a/plugins/sudoers/match.c
+++ b/plugins/sudoers/match.c
@@ -165,10 +165,11 @@ _runaslist_matches(struct member_list *user_list, struct member_list *group_list
      int user_matched = UNSPEC;
      int group_matched = UNSPEC;
  
-    if (tq_empty(user_list) && tq_empty(group_list))
-       return(userpw_matches(def_runas_default, runas_pw->pw_name, runas_pw));
-
      if (runas_pw != NULL) {
+       /* If no runas user or runas group listed in sudoers, use default. */
+       if (tq_empty(user_list) && tq_empty(group_list))
+           return(userpw_matches(def_runas_default, runas_pw->pw_name, runas_pw));
+
         tq_foreach_rev(user_list, m) {
             switch (m->type) {
                 case ALL:
author	Todd C. Miller <Todd.Miller@courtesan.com>
	Tue, 4 Jan 2011 17:44:39 +0000 (12:44 -0500)
committer	Todd C. Miller <Todd.Miller@courtesan.com>
	Tue, 4 Jan 2011 17:44:39 +0000 (12:44 -0500)