NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: bin/43355 (Format string attack in seq program)



Synopsis: Format string attack in seq program

Responsible-Changed-From-To: security-officer->bin-bug-people
Responsible-Changed-By: dholland%NetBSD.org@localhost
Responsible-Changed-When: Thu, 27 May 2010 08:04:41 +0000
Responsible-Changed-Why:
The only security problem here is that the submitter chmod +s'd his binary...


State-Changed-From-To: open->analyzed
State-Changed-By: dholland%NetBSD.org@localhost
State-Changed-When: Thu, 27 May 2010 08:04:41 +0000
State-Changed-Why:
The problem is that valid_format() is too permissive and allows some
invalid format strings through.





Home | Main Index | Thread Index | Old Index