Date: Tue, 23 Apr 1996 20:42:05 +0200 (MET DST) From: Ollivier Robert <roberto@keltia.freenix.fr> To: freebsd@bcl.com Cc: freebsd-security@freebsd.org Subject: Re: CA-95:13 syslog problem Message-ID: <199604231842.UAA16875@keltia.freenix.fr> In-Reply-To: <199604230830.JAA04756@mitre.bcl.com> from FreeBSD Manager at "Apr 23, 96 09:27:44 am"
next in thread | previous in thread | raw e-mail | index | archive | help
It seems that FreeBSD Manager said:
> Can anyone confirm if FreeBSD 2.1.0-RELEASE is vulnerable to the
> syslog problem as described in CERT advisory CA-95:13 and if so the
> current state/location of a patch to solve this problem.
2.1.0-RELEASE is *not* vulnarable.
It was fixed in CURRENT:
------------------------------------------------------------
revision 1.4
date: 1995/09/15 13:53:39; author: peter; state: Exp; lines: +86 -18
Fix security bugs with a "new approach", using stdio's powerful buffer
control hooks.
It is similar to an unrolled multi-part snprintf(), in that a "FILE *" is
attached to a string buffer. There is also an optimisation for the case
where the syslog format string does not contain %m, which should improve
performance of "informational" logging, like from ftpd.
------------------------------------------------------------
the imported into 2.1-STABLE which become 2.1.0-RELEASE:
------------------------------------------------------------
revision 1.2.4.2 <<<<<<<<<<<<<<<
date: 1995/09/26 07:54:51; author: davidg; state: Exp; lines: +86 -18
Brought in changes from main branch: security fixes.
------------------------------------------------------------
RCS file: /spare/FreeBSD-current/src/lib/libc/gen/syslog.c,v
Working file: syslog.c
head: 1.8
branch:
locks: strict
access list:
symbolic names:
RELENG_2_1_0_RELEASE: 1.2.4.3 <<<<<<<<<<<<<<<<
RELENG_2_1_0: 1.2.0.4
The difference between 1.2.4.2 and 1.2.4.3 is a fix of the security fix :-)
2.0.5-RELEASE is vulnerable.
--
Ollivier ROBERT -=- The daemon is FREE! -=- roberto@keltia.freenix.fr
FreeBSD keltia.freenix.fr 2.2-CURRENT #13: Sun Apr 21 18:14:54 MET DST 1996
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199604231842.UAA16875>