Date: Tue, 24 Nov 1998 11:00:01 -0800 (PST) From: Alexander Viro <viro@math.psu.edu> To: freebsd-bugs@FreeBSD.ORG Subject: Re: bin/8790: [PATCH] Buffer overrun in nvi-1.79. Message-ID: <199811241900.LAA18164@freefall.freebsd.org>
index | next in thread | raw e-mail
The following reply was made to PR bin/8790; it has been noted by GNATS. From: Alexander Viro <viro@math.psu.edu> To: David Greenman <dg@root.com> Cc: FreeBSD-gnats-submit@FreeBSD.ORG Subject: Re: bin/8790: [PATCH] Buffer overrun in nvi-1.79. Date: Tue, 24 Nov 1998 13:55:29 -0500 (EST) Sorry for followup to myself, but: *** lib/libc/regex/regcomp.c.old Tue Nov 24 13:45:54 1998 --- lib/libc/regex/regcomp.c Tue Nov 24 13:47:16 1998 *************** *** 613,619 **** (void)REQUIRE(starordinary, REG_BADRPT); /* FALLTHROUGH */ default: ! ordinary(p, c &~ BACKSL); break; } --- 613,619 ---- (void)REQUIRE(starordinary, REG_BADRPT); /* FALLTHROUGH */ default: ! ordinary(p, (char)c); break; } That is, regex in libc has the same vulnerability. And libc _is_ used in suid programs. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the messagehelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199811241900.LAA18164>