Bugtraq mailing list archives

Re: remote buffer overflow in sniffit

From: Brad <brad () comstyle com>
Date: Tue, 22 Jan 2002 12:52:11 -0500 (EST)

Date: Tue, 22 Jan 2002 16:33:00 +1100
From: Edwin Groothuis <edwin () mavetju org>
To: g_463 () hotmail com
Cc: bugtraq () securityfocus com
Subject: Re: remote buffer overflow in sniffit


[snip]

 * Non maintainer upload.
 * [security] sn_logfile.c: Replaced sprintfs by snprintfs fixing a buffer
   overflow (bugtraq).
 * [security] sn_analyse.c: Limit length of TCP packets to the buffer
   size (buffer overflow with MTU > 5000).

-- Torsten Landschoff <torsten () debian org>  Fri, 26 May 2000 08:40:14 +0200

I assume Debian patches this, the FreeBSD port also applies these patches.

Edwin


The OpenBSD port applies this patch too.

revision 1.9
date: 2000/08/30 23:50:29;  author: brad;  state: Exp;  lines: +13 -15
upgrade to sniffit 0.3.7beta + Debian patches

// Brad

brad () comstyle com
brad () openbsd org

Current thread:

remote buffer overflow in sniffit g_463 (Jan 21)
- Re: remote buffer overflow in sniffit Edwin Groothuis (Jan 22)
  - Re: remote buffer overflow in sniffit Brad (Jan 22)