Date: Sat, 4 Dec 1999 23:09:22 -0800 (PST) From: Kris Kennaway <kris@hub.freebsd.org> To: audit@freebsd.org Subject: arp.c patch Message-ID: <Pine.BSF.4.21.9912042308350.34489-100000@hub.freebsd.org>
index | next in thread | raw e-mail
This one isn't likely exploitable, but it's still a small buffer overflow.
arp looks okay apart from this.
Kris
Index: arp.c
===================================================================
RCS file: /home/ncvs//src/usr.sbin/arp/arp.c,v
retrieving revision 1.19
diff -u -r1.19 arp.c
--- arp.c 1999/09/20 09:10:46 1.19
+++ arp.c 1999/12/05 07:08:16
@@ -212,8 +212,8 @@
args[4] = &arg[4][0];
retval = 0;
while(fgets(line, 100, fp) != NULL) {
- i = sscanf(line, "%s %s %s %s %s", arg[0], arg[1], arg[2],
- arg[3], arg[4]);
+ i = sscanf(line, "%49s %49s %49s %49s %49s", arg[0], arg[1],
+ arg[2], arg[3], arg[4])
if (i < 2) {
warnx("bad line: %s", line);
retval = 1;
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-audit" in the body of the message
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.9912042308350.34489-100000>