From owner-freebsd-ports  Thu Dec  6 10: 0:15 2001
Delivered-To: freebsd-ports@hub.freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id A49F037B417
	for <freebsd-ports@hub.freebsd.org>; Thu,  6 Dec 2001 10:00:04 -0800 (PST)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id fB6I04c49839;
	Thu, 6 Dec 2001 10:00:04 -0800 (PST)
	(envelope-from gnats)
Date: Thu, 6 Dec 2001 10:00:04 -0800 (PST)
Message-Id: <200112061800.fB6I04c49839@freefall.freebsd.org>
To: freebsd-ports@FreeBSD.org
Cc: 
From: "Scot W. Hetzel" <hetzels@westbend.net>
Subject: Re: ports/32555: Formatting string bug in cyrus sasl lib
Reply-To: "Scot W. Hetzel" <hetzels@westbend.net>
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ports.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ports>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ports>
X-Loop: FreeBSD.org

The following reply was made to PR ports/32555; it has been noted by GNATS.

From: "Scot W. Hetzel" <hetzels@westbend.net>
To: <FreeBSD-gnats-submit@FreeBSD.ORG>
Cc:  
Subject: Re: ports/32555: Formatting string bug in cyrus sasl lib
Date: Thu, 6 Dec 2001 11:54:15 -0600

 From: "Alexey Rodin" <alx@cii.sumy.ua>
 
 >     A format bug was found in one of the logging functions, that could be
 >     used by an attacker to gain access to a machine or to acquire higher
 >     privileges.
 > 
 
 I am working on the upgrade to 1.5.27, but if someone could commit this to
 the current cyrus-sasl port as patch-lib::common.c.
 
 Thanks,
 
 Scot W. Hetzel
 Cyrus-SASL Maintainer
 
 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message