Date: Sat, 25 Nov 2000 13:22:49 -0800 From: "David O'Brien" <obrien@FreeBSD.org> To: "Brian F. Feldman" <green@FreeBSD.org> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/usr.sbin/inetd builtins.c Message-ID: <20001125132249.A2361@dragon.nuxi.com> In-Reply-To: <200011251415.eAPEFL566372@green.dyndns.org>; from green@FreeBSD.org on Sat, Nov 25, 2000 at 09:15:21AM -0500 References: <bright@wintelcom.net> <200011251415.eAPEFL566372@green.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Nov 25, 2000 at 09:15:21AM -0500, Brian F. Feldman wrote:
> > What's going on here? And why was it MFC'd already?
>
> It can expose up to 16 bytes of wheel-readable data. That's bad!
That's not such a bad vulnerability that you shouldn't have waited at
least 1-2 days for this to sit in -CURRENT to give people a chance to
comment.
--
-- David (obrien@FreeBSD.org)
GNU is Not Unix / Linux Is Not UniX
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001125132249.A2361>