tech-userlevel: LC_xx vulnerability

Subject: LC_xx vulnerability
To: None <tech-userlevel@netbsd.org>
From: None <itojun@iijlab.net>
List: tech-userlevel
Date: 09/08/2000 21:25:15

kris        2000/09/08 00:29:49 PDT

  Modified files:
    lib/libc/locale      setlocale.c 
  Log:
  Disallow '/' characters in LC_* environment variables which might
  be used to point to a bad locale file. This is only believed to be a
  minor security risk - the only risk is if some program uses the result
  of a localized string as a format specifier in a vulnerable function
  like sprintf(). No such code is believed to exist in the FreeBSD base
  system, although it is possible that badly written third party code
  would do that.
  
  Submitted by:	imp
  Approved by:	ache
  
  Revision  Changes    Path
  1.28      +3 -3      src/lib/libc/locale/setlocale.c



------- End of Forwarded Message