OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Chris Kuethe (ckuethe_at_ualberta.ca)
Date: Sun Jan 12 2003 - 15:50:46 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    On Mon, 30 Dec 2002, Theo de Raadt wrote:

    > Everyone else out there who doesn't understand the conversation below,
    > pay attention.
    >
    > This below is what happens when a buffer overflow is discovered by propolice,
    > the gcc extension.
    >
    > If you see any of these happen in a system component, please mail us
    > so that we can fix them. It could be in security software or not; we
    > don't care. Tell us, so that we can fix these buffer overflows
    > discovered by this gcc extension...
    >
    > They are only discovered at runtime..
    >
    > > * William Culler <williamneo.rr.com> [021230 18:30]:
    > > > After upgrading my ?current system from a cvs update done last night, I find
    > > > that dhcpd is core dumping on me.
    > >
    > > > dhcp: stack overflow in function subnet_inner_than
    > >
    > > This function is in the parser. Would you mind posting your config
    > > file and someone can try to reproduce it? My limited testing can't
    > > reproduce it.

    i can reproduce this with -current as of 11am MDT today. i get the same
    "stack overflow in function subnet_inner_than" error and the console just
    does this:
    # dhcpd
    Internet Software Consortium DHCP Server 2.0pl5-OpenBSD
    Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
    All rights reserved.

    Please contribute if you find this software useful.
    For info, please visit http://www.isc.org/dhcp-contrib.html

    Abort

    here's my config file:
    #start of /etc/dhcpd.conf
    subnet 24.86.200.0 netmask 255.255.252.0 { }

    subnet 172.25.0.0 netmask 255.255.255.0 {
            option routers 172.25.0.1;
            range 172.25.0.32 172.25.0.254;
            option domain-name-servers 24.70.95.195, 24.70.95.212, 129.128.5.233;
    }

    subnet 172.31.0.0 netmask 255.255.255.0 {
            option routers 172.31.0.1;
            range 172.31.0.32 172.31.0.254;
            option domain-name "mainframe.cx";
            option domain-name-servers 24.70.95.195, 24.70.95.212, 129.128.5.233;
    }
    #end of /etc/dhcpd.conf 

    -- 
Chris Kuethe, GCIA CISSP: Secure Systems Specialist - U of A CNS
      office: 157 General Services Bldg.    +1.780.492.8135
              chris.kuethe[pyxis.cns.]ualberta.ca

    No trees were destroyed in the sending of this contaminant free message; we
do concede a significant number of electrons may have been inconvenienced.