From owner-freebsd-security  Thu Sep  7 15:32:45 2000
Delivered-To: freebsd-security@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id B9BF837B423; Thu,  7 Sep 2000 15:32:42 -0700 (PDT)
Received: from localhost (kris@localhost)
	by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id PAA25359;
	Thu, 7 Sep 2000 15:32:42 -0700 (PDT)
	(envelope-from kris@FreeBSD.org)
X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs
Date: Thu, 7 Sep 2000 15:32:42 -0700 (PDT)
From: Kris Kennaway <kris@FreeBSD.org>
To: Warner Losh <imp@village.org>
Cc: "Todd C. Miller" <Todd.Miller@courtesan.com>,
	"Vladimir Mencl, MK,     susSED" <mencl@nenya.ms.mff.cuni.cz>,
	freebsd-security@FreeBSD.org, security-officer@FreeBSD.org,
	millert@openbsd.org
Subject: Re: UNIX locale format string vulnerability (fwd) 
In-Reply-To: <200009072227.QAA07066@harmony.village.org>
Message-ID: <Pine.BSF.4.21.0009071532190.25298-100000@freefall.freebsd.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Thu, 7 Sep 2000, Warner Losh wrote:

> In message <Pine.BSF.4.21.0009071520310.16976-100000@freefall.freebsd.org> Kris Kennaway writes:
> : I think all of the following can be pointed to arbitrary files as well
> : in setlocale():
> :     "LANG"
> 
> LANG cannot.  If it contains /, it is ignored.

setlocale(), not catopen(). It is treated on the same footing as all of
the others, there.

Kris

--
In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <forsythe@alum.mit.edu>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message