Vulnerability Development mailing list archives

Re: core dump on mingetty and getty

From: Patrick Patterson <ppatterson () carillonis com>
Date: Mon, 3 Dec 2001 14:48:04 -0500

-----BEGIN PGP SIGNED MESSAGE-----

Getty at least isn't vulnerable in Debian Unstable (3.0pre and later)

[ppatters@griffin:~]$ /sbin/getty `perl -e 'print "A" x 9000'`
Usage: getty [-hiLmw] [-l login_program] [-t timeout] [-I initstring] ...
[ppatters@griffin:~]$ uname -a
Linux griffin 2.4.9 #9 Sun Nov 4 11:21:02 EST 2001 i686 unknown
[ppatters@griffin:~]$ cat /etc/debian_version
testing/unstable

(looks like they use Wietse Venema's Getty - v1.8???)



- --

Patrick Patterson                       Tel: (514) 485-0789
Chief Security Architect                Fax: (514) 485-4737
Carillon Information Security Inc.      E-Mail: ppatterson () carillonIS com
- -----------------------------------------------------------------------
                The New Sound of Network Security
                     http://www.carillonIS.com


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
MessageID: pZZVVea+SFry6+yF0Cc/WoF6/j4302TH

iQCVAwUBPAvW97qc3sMKNyclAQHUBAP/YGFXl/x4Ao3QvS+Dwer8Tx2TIfeuWdls
pu3ANyCmdYJVmnnKKsoPd0LQI7g1quFrRwJ4OB3PVsOI8VcxVvP8wOfdeLzYRq7f
VzXEO4YK30qKnRHnLB3Oet7paMdXaLe8hhjxHBRxC+WgzZFpMutcrtQKSFAOu4zH
LHAUdRDdN8Q=
=DwaB
-----END PGP SIGNATURE-----

Current thread:

Can anyone verify a core dump on /sbin/mingetty smackenz (Dec 03)
- core dump on mingetty and getty KF (Dec 03)
  - Re: core dump on mingetty and getty Ryan Yagatich (Dec 03)
    - Re: core dump on mingetty and getty Nelson Sampaio Araujo Junior (Dec 03)
    - Re: core dump on mingetty and getty G . Cohen (Dec 03)
  - Re: core dump on mingetty and getty Patrick Patterson (Dec 03)
  - Re: core dump on mingetty and getty Sean Davis (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty Pedro Miller Rabinovitch (Dec 03)
  - Re: Can anyone verify a core dump on /sbin/mingetty Chip Mefford (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty J.R. Blain (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty KF (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Scott Mackenzie (Dec 03)
  - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Bill Weiss (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping - AGETTY too KF (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Jeffrey Denton (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Matias Sedalo (Dec 04)

(Thread continues...)