Date: Thu, 07 Sep 2000 16:15:55 -0600 From: "Todd C. Miller" <Todd.Miller@courtesan.com> To: "Vladimir Mencl, MK, susSED" <mencl@nenya.ms.mff.cuni.cz> Cc: "Andrey A. Chernov" <ache@nagual.pp.ru>, "Todd C. Miller" <Todd.Miller@courtesan.com>, Warner Losh <imp@village.org>, Kris Kennaway <kris@FreeBSD.ORG>, freebsd-security@FreeBSD.ORG, security-officer@FreeBSD.ORG Subject: Re: UNIX locale format string vulnerability (fwd) Message-ID: <200009072215.e87MFtQ24652@xerxes.courtesan.com> In-Reply-To: Your message of "Fri, 08 Sep 2000 00:13:21 %2B0200." <Pine.GSO.4.10.10009072356220.845-100000@nenya.ms.mff.cuni.cz> References: <Pine.GSO.4.10.10009072356220.845-100000@nenya.ms.mff.cuni.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
Sudo already discards the following:
IFS
LOCALDOMAIN
RES_OPTIONS
HOSTALIASES
LD_*
_RLD*
SHLIB_PATH
LIBPATH
KRB_CONF
KRB5_CONFIG
ENV
BASH_ENV
- todd
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009072215.e87MFtQ24652>