Date: Wed, 4 Oct 2000 19:52:05 -0700 From: Kris Kennaway <kris@FreeBSD.org> To: Kris Kennaway <kris@FreeBSD.org> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/contrib/tcpdump addrtoname.c print-atalk.c print-bgp.c print-fr.c print-icmp.c print-rx.c print-sunrpc.c print-telnet.c smbutil.c util.c Message-ID: <20001004195205.A42702@freefall.freebsd.org> In-Reply-To: <200010050249.TAA46160@freefall.freebsd.org>; from kris@FreeBSD.org on Wed, Oct 04, 2000 at 07:49:49PM -0700 References: <200010050249.TAA46160@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 04, 2000 at 07:49:49PM -0700, Kris Kennaway wrote:
> kris 2000/10/04 19:49:49 PDT
>
> Modified files:
> contrib/tcpdump addrtoname.c print-atalk.c print-bgp.c
> print-fr.c print-icmp.c print-rx.c
> print-sunrpc.c print-telnet.c smbutil.c
> util.c
> Log:
> * Buffer-safe string function cleanup. There are a couple of strcpy()
> and strcat()s which would be more difficult to fix, but I think they're
> safe anyway.
> * Don't crash at runtime by overflowing a buffer with constant data in
> print-icmp.c on a long hostname.
> * Don't overflow a static buffer by trying to decode an AFS ACL into a buffer
> which is way too small for it.
>
> Reviewed by: -audit
I tried to contact the tcpdump developers about this a week ago, heard
no response :-(
Kris
--
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <forsythe@alum.mit.edu>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001004195205.A42702>