Vulnerability Development mailing list archives

Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core

From: Jeffrey Denton <dentonj () c2i2 com>
Date: Mon, 3 Dec 2001 17:55:07 -0700 (MST)

On Tue, 4 Dec 2001, Bill Weiss wrote:

Red-Hat 6.0 onwards (not tested any before) upto and including 7.2
Mandrake 8.0 2.4.3-20mdksmp (presumably similar to redhat here)
turbolinux 6.0
SCO unix 5.0.5

(this information was quickly gathered by several people; thanks everyone)


Slackware 7.0 (maybe 8.0) uses agetty, which is not vunerable, as far as I can tell.
It just spits out a usage error.


Slackware 8.0 is not vulnerable.

# locate getty | grep bin
/sbin/agetty

# /sbin/agetty `perl -e 'print "A"x90000'`
Usage: /sbin/agetty [-hiLmw] [-l login_program] [-t timeout] [-I initstring] [-H
login_host] baud_rate,... line [termtype]
or      [-hiLmw] [-l login_program] [-t timeout] [-I initstring] [-H login_host]
line baud_rate,... [termtype]

# cat /etc/slackware-version
8.0.0 (tta)

dentonj

Current thread:

Re: core dump on mingetty and getty, (continued)
- - - Re: core dump on mingetty and getty G . Cohen (Dec 03)
  - Re: core dump on mingetty and getty Patrick Patterson (Dec 03)
  - Re: core dump on mingetty and getty Sean Davis (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty Pedro Miller Rabinovitch (Dec 03)
  - Re: Can anyone verify a core dump on /sbin/mingetty Chip Mefford (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty J.R. Blain (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty KF (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Scott Mackenzie (Dec 03)
  - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Bill Weiss (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping - AGETTY too KF (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Jeffrey Denton (Dec 03)
    - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Matias Sedalo (Dec 04)
  - Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core Przemyslaw Frasunek (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty jon schatz (Dec 03)
  - Message not available
    - Re: Can anyone verify a core dump on /sbin/mingetty jon schatz (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty David Klann (Dec 03)
- RE: Can anyone verify a core dump on /sbin/mingetty Darian Lanx (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty dr john halewood (Dec 04)
- Re: Can anyone verify a core dump on /sbin/mingetty dvdman dvdman (Dec 03)
- Re: Can anyone verify a core dump on /sbin/mingetty Derry Hamilton (Dec 04)