From owner-freebsd-bugs@FreeBSD.ORG  Mon May 30 08:23:22 2005
Return-Path: <owner-freebsd-bugs@FreeBSD.ORG>
X-Original-To: freebsd-bugs@FreeBSD.org
Delivered-To: freebsd-bugs@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D7A7A16A41F;
	Mon, 30 May 2005 08:23:22 +0000 (GMT)
	(envelope-from venglin@freebsd.lublin.pl)
Received: from mailhost.freebsd.lublin.pl (mailhost.freebsd.lublin.pl
	[193.138.118.4])
	by mx1.FreeBSD.org (Postfix) with ESMTP id CABE043D60;
	Mon, 30 May 2005 08:23:21 +0000 (GMT)
	(envelope-from venglin@freebsd.lublin.pl)
Received: from [127.0.0.1] (mailhost.freebsd.lublin.pl [193.138.118.4])
	by mailhost.freebsd.lublin.pl (8.13.1/8.13.1) with ESMTP id
	j4U8NK0S085544; Mon, 30 May 2005 10:23:20 +0200 (CEST)
	(envelope-from venglin@freebsd.lublin.pl)
Message-ID: <429ACD78.70306@freebsd.lublin.pl>
Date: Mon, 30 May 2005 10:23:20 +0200
From: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
Organization: czuby.net
User-Agent: Mozilla Thunderbird 1.0.2 (X11/20050331)
X-Accept-Language: pl, en-us, en
MIME-Version: 1.0
To: "Simon L. Nielsen" <simon@FreeBSD.org>
References: <200505291545.j4TFjUQa057820@freefall.freebsd.org>
In-Reply-To: <200505291545.j4TFjUQa057820@freefall.freebsd.org>
X-Enigmail-Version: 0.91.0.0
Content-Type: text/plain; charset=ISO-8859-2
Content-Transfer-Encoding: 8bit
X-Virus-Scanned: ClamAV 0.85.1/899/Mon May 30 08:57:01 2005 on
	mailhost.freebsd.lublin.pl
X-Virus-Status: Clean
Cc: freebsd-bugs@FreeBSD.org
Subject: Re: bin/80661: [patch] [SECURITY] Missing NULL termination after
 strncpy() in rlogin(1)
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 30 May 2005 08:23:23 -0000

Simon L. Nielsen napisał(a):
> We (the Security Team) can't find anywhere in the code-path where this
> bug where this could lead to a situation that could be exploited as a

I can confirm, that this bug doesn't seem to be exploitable.

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NICHDL: PMF9-RIPE *
* JID: venglin@jabber.atman.pl ** PGP ID: 2578FCAD ** HAM-RADIO: SQ8JIV *