|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: evil statd function
From: lamont
icopyright.comDate: Thu Jun 29 2000 - 13:12:46 CDT
- Next message: Antonomasia: "perl arg counting"
- Previous message: Chris Evans: "Re: evil statd function"
- In reply to: Chris Evans: "Re: evil statd function"
- Reply: lamonticopyright.com: "Re: evil statd function"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I found the same _msgout() in ypxfrd_svc.c (RH ypserv-1.3.9)
On Thu, 29 Jun 2000, Chris Evans wrote:
> On Thu, 29 Jun 2000 lamonticopyright.com wrote:
>
> > grepping through the redhat sources for nfs-utils-0.1.6 i found this:
> >
> > /*
> > * Write the _msgout function
> > */
>
> [snip syslog abuse]
>
> Well spotted. It's already been independently spotted by both myself and
> Jeff Uphoff. The nfs-utils case will be fixed by Jeff I hope.
>
> More seriously, perhaps.... an identical flaw exists in glibc rpcgen. I've
> informed the glibc maintainers, and it'll get fixed. I wonder what glibc
> rpcgen is used to generate code for. Internal bits of glibc rpc
> code? (ouch). Vulnerabilities in portmap? mountd?
>
> Comments requested..
>
> Chris
>
- Next message: Antonomasia: "perl arg counting"
- Previous message: Chris Evans: "Re: evil statd function"
- In reply to: Chris Evans: "Re: evil statd function"
- Reply: lamonticopyright.com: "Re: evil statd function"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]