Date: Tue, 5 Sep 1995 12:53:01 -0700 From: Bill Paul <wpaul> To: CVS-commiters, cvs-lib Subject: cvs commit: src/lib/libc/gen getpwent.c getgrent.c Message-ID: <199509051953.MAA02396@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
wpaul 95/09/05 12:53:01 Modified: lib/libc/gen getpwent.c getgrent.c Log: getgrent.c: adjust _nextypgroup() slightly so that it continues processing the group map after encountering a badly formatted entry. getpwent.c: same as above for _nextyppass(), and also turn a couple of sprintf()s into snprintf()s to avoid potential buffer overruns. (The other day I nearly went mad because of a username in my NIS database that's actually 9 characters long instead of 8. Stuffing a 9-character username into an 8-character buffer can do some strange things.) (This reminds me: I hope somebody's planning to fix the buffer overrun security hole in syslog(3) before 2.1 ships.)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199509051953.MAA02396>