Date: Thu, 29 Jul 2010 21:40:03 GMT From: Jilles Tjoelker <jilles@stack.nl> To: freebsd-bugs@FreeBSD.org Subject: Re: bin/148733: a potential buffer overflow in sh(1) Message-ID: <201007292140.o6TLe3ci040261@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR bin/148733; it has been noted by GNATS. From: Jilles Tjoelker <jilles@stack.nl> To: bug-followup@FreeBSD.org, snnn119@gmail.com Cc: Subject: Re: bin/148733: a potential buffer overflow in sh(1) Date: Thu, 29 Jul 2010 23:38:55 +0200 > [buffer overflow in sh(1) pathname generation] You are right, there is a possible heap buffer overflow here. It is rather unlikely in normal usage because the kernel does not accept pathnames longer than 1023 bytes, but still possible. -- Jilles Tjoelker
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201007292140.o6TLe3ci040261>