Date: Thu, 2 Sep 1999 04:00:03 -0700 (PDT) From: Sheldon Hearn <sheldonh@uunet.co.za> To: freebsd-bugs@FreeBSD.org Subject: Re: bin/13535: Finger bug: possible stack overflow Message-ID: <199909021100.EAA63761@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR bin/13535; it has been noted by GNATS. From: Sheldon Hearn <sheldonh@uunet.co.za> To: koya@math.yokohama-cu.ac.jp Cc: FreeBSD-gnats-submit@FreeBSD.ORG Subject: Re: bin/13535: Finger bug: possible stack overflow Date: Thu, 02 Sep 1999 12:49:31 +0200 On Thu, 02 Sep 1999 12:50:11 +0900, Yoshihiro Koya wrote: > Apply the patch below: What is your patch supposed to do? It only doubles the size of a buffer which we _always_ seem to do bounded manipulation on. Can you spot anything in the finger source that fiddles with tput without checking its size and termination? _That_ would make for a proper fix. Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199909021100.EAA63761>