Date: Sun, 28 Jul 1996 13:29:12 -0700 (PDT) From: Peter Wemm <peter> To: CVS-committers, cvs-all, cvs-sbin Subject: cvs commit: src/sbin/ping ping.c Message-ID: <199607282029.NAA08557@freefall.freebsd.org>
index | next in thread | raw e-mail
peter 96/07/28 13:29:11 Modified: sbin/ping ping.c Log: Limit the risk of `buf' overrun in ping.c when printing hostnames. Note, this is not really a security risk, because the buffer in question is a static variable in the data segment and not on the stack, and hence cannot subert the flow of execution in any way. About the worst case was that if you pinged a long hostname, ping could coredump. Pointed out on: bugtraq (listserv@netspace.org) Revision Changes Path 1.6 +3 -2 src/sbin/ping/ping.chome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199607282029.NAA08557>