From owner-freebsd-security  Tue Nov  3 23:11:27 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id XAA04891
          for freebsd-security-outgoing; Tue, 3 Nov 1998 23:11:27 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from aniwa.sky (p14-max11.wlg.ihug.co.nz [209.78.48.14])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA04881
          for <FreeBSD-security@FreeBSD.ORG>; Tue, 3 Nov 1998 23:11:23 -0800 (PST)
          (envelope-from andrew@squiz.co.nz)
Received: from localhost (andrew@localhost)
	by aniwa.sky (8.8.8/8.8.7) with SMTP id UAA05299;
	Wed, 4 Nov 1998 20:10:15 +1300 (NZDT)
	(envelope-from andrew@squiz.co.nz)
Date: Wed, 4 Nov 1998 20:10:00 +1300 (NZDT)
From: Andrew McNaughton <andrew@squiz.co.nz>
X-Sender: andrew@aniwa.sky
Reply-To: andrew@squiz.co.nz
To: Nicholas Charles Brawn <ncb05@uow.edu.au>
cc: Warner Losh <imp@village.org>, FreeBSD-security@FreeBSD.ORG
Subject: Re: [rootshell] Security Bulletin #25 (fwd) 
In-Reply-To: <Pine.SOL.4.02A.9811041627410.24210-100000@banshee.cs.uow.edu.au>
Message-ID: <Pine.BSF.4.01.9811041946050.780-100000@aniwa.sky>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Wed, 4 Nov 1998, Nicholas Charles Brawn wrote:

> Well I just grabbed 1.2.26 and did: 
> find . -exec grep sprintf {} \; |wc -l 
> 
> And came up with 138 lines. Just having sprintf() in your code is not
> indicative of a vulnerability, but it's still a high number.

ssh is commonly used for piping substantial ammounts of data, and can
probably claim good reasons for using the faster non-bounds-checking
routines in many of these cases.  Doesn't apply to low volume things like
the logging routines though. 

Andrew


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message