From owner-freebsd-security  Thu Sep  7 15:27:42 2000
Delivered-To: freebsd-security@freebsd.org
Received: from rover.village.org (rover.village.org [204.144.255.49])
	by hub.freebsd.org (Postfix) with ESMTP
	id DE47F37B424; Thu,  7 Sep 2000 15:27:31 -0700 (PDT)
Received: from harmony.village.org (harmony.village.org [10.0.0.6])
	by rover.village.org (8.9.3/8.9.3) with ESMTP id QAA39531;
	Thu, 7 Sep 2000 16:27:28 -0600 (MDT)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id QAA07066; Thu, 7 Sep 2000 16:27:18 -0600 (MDT)
Message-Id: <200009072227.QAA07066@harmony.village.org>
To: Kris Kennaway <kris@FreeBSD.org>
Subject: Re: UNIX locale format string vulnerability (fwd) 
Cc: "Todd C. Miller" <Todd.Miller@courtesan.com>,
	"Vladimir Mencl, MK,     susSED" <mencl@nenya.ms.mff.cuni.cz>,
	freebsd-security@FreeBSD.org, security-officer@FreeBSD.org,
	millert@openbsd.org
In-reply-to: Your message of "Thu, 07 Sep 2000 15:26:23 PDT."
		<Pine.BSF.4.21.0009071520310.16976-100000@freefall.freebsd.org> 
References: <Pine.BSF.4.21.0009071520310.16976-100000@freefall.freebsd.org>  
Date: Thu, 07 Sep 2000 16:27:18 -0600
From: Warner Losh <imp@village.org>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <Pine.BSF.4.21.0009071520310.16976-100000@freefall.freebsd.org> Kris Kennaway writes:
: I think all of the following can be pointed to arbitrary files as well
: in setlocale():
:     "LANG"

LANG cannot.  If it contains /, it is ignored.

Warner


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message