From owner-freebsd-hackers  Thu Oct 29 11:13:25 1998
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id LAA05118
          for freebsd-hackers-outgoing; Thu, 29 Oct 1998 11:13:25 -0800 (PST)
          (envelope-from owner-freebsd-hackers@FreeBSD.ORG)
Received: from whistle.com (s205m131.whistle.com [207.76.205.131])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA05099;
          Thu, 29 Oct 1998 11:13:23 -0800 (PST)
          (envelope-from archie@whistle.com)
Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id LAA22847; Thu, 29 Oct 1998 11:13:18 -0800 (PST)
Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3)
	id sma022843; Thu Oct 29 11:13:15 1998
Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id LAA26982; Thu, 29 Oct 1998 11:13:15 -0800 (PST)
From: Archie Cobbs <archie@whistle.com>
Message-Id: <199810291913.LAA26982@bubba.whistle.com>
Subject: Re: getpwnam() problem?
In-Reply-To: <199810281914.MAA07942@kitsune.swcp.com> from Brendan Conoboy at "Oct 28, 98 12:14:20 pm"
To: synk@swcp.com (Brendan Conoboy)
Date: Thu, 29 Oct 1998 11:13:15 -0800 (PST)
Cc: freebsd-security@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL38 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Brendan Conoboy writes:
> A couple weeks ago I filled out a little bug report with the GNATS
> form, but it's received no attention (maybe I should have marked it as
> critical?).  Anyway, since it may well be security related, I wanted to
> point it out here.  The condensed version is that if getpwnam() is
> given a very large string (say a few thousand characters) it will
> sigsegv or sigbus.  This is true for 2.2.7-stable (as of a few weeks
> ago) and 3.0-release.  Perhaps it's nothing, perhaps it's something,
> but it certainly doesn't happen on a whole slew of other OSes.  The
> problem report is at:
> 
> http://www.freebsd.org/cgi/query-pr.cgi?pr=8176

I've located the bug and supplied a patch in a followup...
Very simple bug, someone please commit in 2.2 and 3.0.

Thanks,
-Archie

___________________________________________________________________________
Archie Cobbs   *   Whistle Communications, Inc.  *   http://www.whistle.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message