From a59dfd60514b3a2fb620b2aba82d551c51cf2bd8 Mon Sep 17 00:00:00 2001
From: Markus Friedl <mfriedl@gmail.com>
Date: Sun, 7 Oct 2012 21:15:20 +0200
Subject: [PATCH] monitor.c: missing p -> username conversion (use-after-free)

---
 ssh/monitor.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ssh/monitor.c b/ssh/monitor.c
index 0c9d958..fe66b34 100644
--- a/ssh/monitor.c
+++ b/ssh/monitor.c
@@ -980,7 +980,7 @@ monitor_valid_userblob(u_char *data, u_int datalen)
 		fatal("%s: buffer error: %s", __func__, ssh_err(r));
 	if (strcmp(authctxt->user, username) != 0) {
 		logit("wrong user name sent to monitor: expected %s != %.100s",
-		    authctxt->user, p);
+		    authctxt->user, username);
 		fail++;
 	}
 	xfree(username);