NetBSD-Bugs archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: bin/43355 (Format string attack in seq program)
Synopsis: Format string attack in seq program
Responsible-Changed-From-To: security-officer->bin-bug-people
Responsible-Changed-By: dholland%NetBSD.org@localhost
Responsible-Changed-When: Thu, 27 May 2010 08:04:41 +0000
Responsible-Changed-Why:
The only security problem here is that the submitter chmod +s'd his binary...
State-Changed-From-To: open->analyzed
State-Changed-By: dholland%NetBSD.org@localhost
State-Changed-When: Thu, 27 May 2010 08:04:41 +0000
State-Changed-Why:
The problem is that valid_format() is too permissive and allows some
invalid format strings through.
Home |
Main Index |
Thread Index |
Old Index