Date: Sat, 13 Jan 2001 05:23:22 -0800 From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> To: Kris Kennaway <kris@FreeBSD.ORG> Cc: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>, freebsd-security@FreeBSD.ORG Subject: Re: [!H] Tcpdump 3.5.2 remote root vulnerability (fwd) Message-ID: <200101131323.f0DDNX518734@cwsys.cwsent.com> In-Reply-To: Your message of "Fri, 12 Jan 2001 18:45:29 PST." <20010112184529.B25168@citusc.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20010112184529.B25168@citusc.usc.edu>, Kris Kennaway writes: > > --dc+cDN39EJAMEtIO > Content-Type: text/plain; charset=us-ascii > Content-Disposition: inline > > On Fri, Jan 12, 2001 at 12:57:57PM -0800, Cy Schubert - ITSD Open Systems Gro > up wrote: > > This affects our tcpdump. > > Well..it affects old versions of tcpdump before we patched the > vulnerability (which I discovered and which we initially publicized, > BTW), and released the advisory describing it. All this post is is a > canned exploit for the known, long fixed problem..nothing to worry > about unless you don't act on the security advisories which are > released. > > Kris I do recall the advisory which mainly patches some calls from sprintf() to snprintf(), however the advisory from BUGTRAQ that I had forwarded to this list patches two calls to sscanf(). Are you saying that we tackled the same problem differently or did we just fix a different buffer overrun condition? If this is a different problem, there are two other sscanf's in print-atalk.c that were not discussed in the advisory that need fixing. If this is the same problem fixed differently, my apologies to the list for wasting everyone's time. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/Alpha Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200101131323.f0DDNX518734>