Date: Fri, 07 Feb 1997 13:50:44 -0700 From: Warner Losh <imp@village.org> To: freebsd-current@freebsd.org Subject: Re: CERT Advisory CA-97.06 - Vulnerability in rlogin/term (fwd) Message-ID: <E0vsxFt-0000om-00@rover.village.org> In-Reply-To: Your message of "Thu, 06 Feb 1997 22:24:57 GMT." <Pine.NEB.3.95.970206222408.575H-100000@tachyon.mono.org> References: <Pine.NEB.3.95.970206222408.575H-100000@tachyon.mono.org>
index | next in thread | previous in thread | raw e-mail
: ---------- Forwarded message ---------- : Date: Thu, 6 Feb 1997 15:42:57 -0600 : From: Aleph One <aleph1@DFW.NET> : Reply-To: cert-advisory-request@cert.org : To: BUGTRAQ@netspace.org : Subject: CERT Advisory CA-97.06 - Vulnerability in rlogin/term : ... : FreeBSD, Inc. : ============= : This vulnerability is present in FreeBSD 2.1.5 and previous : versions. It was fixed in all FreeBSD source and : binary distributions dated after 1996/07/25. ... : ! term[MAX_TERM_LENGTH] = '\0'; ... Shouldn't that be MAX_TERM_LENGTH-1? Warnerhelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E0vsxFt-0000om-00>