Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 159960 Details for
Bug 231292
<net-misc/openssh-5.1_p1-r1 do_authloop() Format String Privilege Escalation
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
openssh-auth1.c-formatstring.patch
openssh-auth1.c-formatstring.patch (text/plain), 628 bytes, created by
Robert Buchholz (RETIRED)
on 2008-07-09 16:35:20 UTC
(
hide
)
Description:
openssh-auth1.c-formatstring.patch
Filename:
MIME Type:
Creator:
Robert Buchholz (RETIRED)
Created:
2008-07-09 16:35:20 UTC
Size:
628 bytes
patch
obsolete
>revision 1.124 >date: 2008/07/09 10:54:05; author: djm; state: Exp; lines: +1 -1 > - (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAM > account check failure path. The vulnerable format buffer is supplied > from PAM and should not contain attacker-supplied data. > >Index: openssh-4.7p1/auth1.c >=================================================================== >--- openssh-4.7p1.orig/auth1.c >+++ openssh-4.7p1/auth1.c >@@ -351,7 +351,7 @@ do_authloop(Authctxt *authctxt) > msg[len] = '\0'; > else > msg = "Access denied."; >- packet_disconnect(msg); >+ packet_disconnect("%s", msg); > } > #endif >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=159960">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 231292
: 159960
