Date: Mon, 19 Sep 2005 18:43:11 +0000 (UTC) From: Colin Percival <cperciva@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/lib/libpam/modules/pam_exec pam_exec.c Message-ID: <200509191843.j8JIhBrG065000@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
cperciva 2005-09-19 18:43:11 UTC
FreeBSD src repository
Modified files:
lib/libpam/modules/pam_exec pam_exec.c
Log:
When (re)allocating space for an array of pointers to char, use
sizeof(*list), not sizeof(**list). (i.e., sizeof(pointer) rather than
sizeof(char)).
It is possible that this buffer overflow is exploitable, but it was
added after RELENG_5 forked and hasn't been MFCed, so this will not
receive an advisory.
Submitted by: Vitezslav Novy
MFC after: 1 day
Revision Changes Path
1.5 +1 -1 src/lib/libpam/modules/pam_exec/pam_exec.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200509191843.j8JIhBrG065000>