From owner-freebsd-security  Tue Apr 23 06:08:59 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id GAA00956
          for security-outgoing; Tue, 23 Apr 1996 06:08:59 -0700 (PDT)
Received: from passer.osg.gov.bc.ca (passer.osg.gov.bc.ca [142.32.110.29])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id GAA00951
          for <freebsd-security@freebsd.org>; Tue, 23 Apr 1996 06:08:57 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by passer.osg.gov.bc.ca (8.7.5/8.6.10) with SMTP id GAA01064; Tue, 23 Apr 1996 06:08:29 -0700 (PDT)
From: Cy Schubert - ITSD Open Systems Group <cschuber@uumail.gov.bc.ca>
Message-Id: <199604231308.GAA01064@passer.osg.gov.bc.ca>
X-Authentication-Warning: passer.osg.gov.bc.ca: Host localhost [127.0.0.1] didn't use HELO protocol
Reply-to: cschuber@orca.gov.bc.ca
X-Mailer: DXmail
To: freebsd@bcl.com
cc: freebsd-security@freebsd.org
Subject: Re: CA-95:13 syslog problem 
In-reply-to: Your message of "Tue, 23 Apr 96 09:27:44 -0000."
             <199604230830.JAA04756@mitre.bcl.com> 
Date: Tue, 23 Apr 96 06:08:28 -0700
X-Mts: smtp
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

> 
> Can anyone confirm if FreeBSD 2.1.0-RELEASE is vulnerable to the 
> syslog problem as described in CERT advisory CA-95:13 and if so the 
> current state/location of a patch to solve this problem.

I don't believe the bug exists as the following test program should
dump core or at least issue a message stating snprintf is broken.

#include <stdio.h>
#include <syslog.h>

static char x[6]= {'H','E','L','L','O',0};

void main()
{
        char buf[4096];
        int ct;
        for(ct=0;ct<4095;ct++)
                buf[ct]='X';
        openlog("testprog",LOG_PID, LOG_AUTHPRIV);
        printf("Check snprintf\n");
        snprintf(x,3,buf);
        if(x[4]!='O')
                fprintf(stderr,"snprintf is broken\n");
        printf("Testing syslog\n");
        syslog(LOG_ERR|LOG_USER,buf);
        closelog();
}

> 
> Bob
> 
> 
> ---
> FreeBSD Mail Lists,     | Email: freebsd@bcl.com     | Human Contact:
> BCL International       | WWW: http://www.bcl.com/   | Bob Dickel,
> 18-20 Farringdon Lane,  | Tel: 0171 251 1125         | Technical Support
> LONDON, EC1R 3AU.       | Fax: 0171 251 4902         | Email: bob@bcl.com 
> 


Regards,                       Phone:  (604)389-3827
Cy Schubert                    OV/VM:  BCSC02(CSCHUBER)
Open Systems Support          BITNET:  CSCHUBER@BCSC02.BITNET
ITSD                        Internet:  cschuber@uumail.gov.bc.ca
                                       cschuber@bcsc02.gov.bc.ca

		"Quit spooling around, JES do it."