From owner-cvs-all Sun Oct 8 23: 8: 4 2000 Delivered-To: cvs-all@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id C671337B66D; Sun, 8 Oct 2000 23:08:01 -0700 (PDT) Received: (from kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) id XAA93040; Sun, 8 Oct 2000 23:08:01 -0700 (PDT) (envelope-from kris@FreeBSD.org) Message-Id: <200010090608.XAA93040@freefall.freebsd.org> From: Kris Kennaway Date: Sun, 8 Oct 2000 23:08:01 -0700 (PDT) To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/usr.sbin/mrouted cfparse.y main.c mtrace.c prune.c X-FreeBSD-CVS-Branch: HEAD Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG kris 2000/10/08 23:08:01 PDT Modified files: usr.sbin/mrouted cfparse.y main.c mtrace.c prune.c Log: String buffer safety cleanup. I don't think any of these were exploitable remotely, but they would be if e.g. it happened to call the logging function using a DNS hostname. Also replace random() by arc4random() - only one of these is arguably required since it's directly used in the protocol, but we might as well replace both to avoid using two different PRNGs. Reviewed by: green, alex Revision Changes Path 1.11 +5 -5 src/usr.sbin/mrouted/cfparse.y 1.18 +3 -5 src/usr.sbin/mrouted/main.c 1.19 +2 -4 src/usr.sbin/mrouted/mtrace.c 1.18 +2 -2 src/usr.sbin/mrouted/prune.c To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message