Bugtraq mailing list archives
Re: WuFTPD: Providing *remote* root since at least1994
From: deraadt () CVS OPENBSD ORG (Theo de Raadt)
Date: Thu, 29 Jun 2000 10:36:30 -0600
Theo de Raadt <deraadt () CVS OPENBSD ORG> writes: [...regarding snprintf()...]b) Returns -1 and truncate with a \0Can you please list the vendors who have the incorrect behaviours you described in (a) and (b) so that we can properly bitch at them?glibc before 2.1.x, for one.
Yes, it is known that older glibc had a security issue because their snprintf was broken, but there is newer software now which does not have this specific security issue. There are probably 30+ snprintf calls in OpenBSD which require that snprintf return the length of buffer it wanted. We have absolutely no plans to change those into less-optimal chunks of code. It's even possible that openssh has code to do so. For those 30+ cases, as soon as you assume that snprintf is broken, the code size for handling that increases massively. That increases complexity is not needed. This is much like how we don't write code for dealing with the busted connect() system call in Linux (socket reuse in non-blocking mode). But on the other hand, Linux has also eroded the meaning of the struct timeval * in select(), so in that case we have dealt with that issue.
Current thread:
- Re: WuFTPD: Providing *remote* root since at least1994, (continued)
- Re: WuFTPD: Providing *remote* root since at least1994 Valentin Nechayev (Jun 29)
- Re: WuFTPD: Providing *remote* root since at least1994 Kenn Humborg (Jun 29)
- Re: WuFTPD: Providing *remote* root since at least1994 Hudin Lucian (Jun 29)
- Multiple vulnerabilities in Sybergen Secure Desktop anders.ingeborn () INFOSEC SE (Jun 30)
- SecureXpert Advisory [SX-20000620-2] SecureXpert DIRECT Sender (Jun 30)
- Re: WuFTPD: Providing *remote* root since at least1994 Bernd Luevelsmeyer (Jun 28)
- Re: WuFTPD: Providing *remote* root since at least1994 Lars Mathiesen (Jun 28)
- Re: WuFTPD: Providing *remote* root since at least1994 Robert Bihlmeyer (Jun 29)
- Re: WuFTPD: Providing *remote* root since at least1994 Ben Pfaff (Jun 29)
- Update to Integrity Protection Driver Available IPD (Jun 29)
- Re: WuFTPD: Providing *remote* root since at least1994 Theo de Raadt (Jun 29)
- Buggy ARP handling in Windoze Paul Starzetz (Jun 29)
- Re: Buggy ARP handling in Windoze Jurjen Oskam (Jun 29)
- Re: Buggy ARP handling in Windoze Steven Alexander (Jun 29)
- vpopmail-3.4.11 problems H D Moore (Jun 29)
- CONECTIVA LINUX SECURITY ANNOUNCEMENT - dump Conectiva Security (Jun 30)