From owner-freebsd-security  Sat Jun 27 10:08:45 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id KAA03565
          for freebsd-security-outgoing; Sat, 27 Jun 1998 10:08:45 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA03547
          for <freebsd-security@FreeBSD.ORG>; Sat, 27 Jun 1998 10:08:34 -0700 (PDT)
          (envelope-from jkh@time.cdrom.com)
Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1])
	by time.cdrom.com (8.8.8/8.8.8) with ESMTP id KAA02903;
	Sat, 27 Jun 1998 10:07:29 -0700 (PDT)
	(envelope-from jkh@time.cdrom.com)
To: "Vadim V. Chepkov" <vvc@kharkiv.net>
cc: freebsd-security@FreeBSD.ORG
Subject: Re: (FWD) QPOPPER REMOTE ROOT EXPLOIT 
In-reply-to: Your message of "Sat, 27 Jun 1998 18:40:35 +0300."
             <35951273.6488@kharkiv.net> 
Date: Sat, 27 Jun 1998 10:07:29 -0700
Message-ID: <2899.898967249@time.cdrom.com>
From: "Jordan K. Hubbard" <jkh@time.cdrom.com>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> Jordan K. Hubbard wrote:
> > 
> > 
> > I've already committed a slightly more intelligent fix to this
> > problem.  Thanks!
> > 
> 
> But it doesn't work

Then there is more than one overflow, unless you can show me precisely
why the change I've already made "doesn't work?" - what you've shown
me so far could come from any number of other places in the code and
I never claimed to fix *all* potential overflows, just that one.

- Jordan

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message