Stephan Zeisberg reported an out-of-bounds write vulnerability in the _sasl_add_string function in cyrus-sasl2, a library implementing the Simple Authentication and Security Layer. A remote attacker can take advantage of this issue to cause denial-of-service conditions for applications using the library.