NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > OpenBSD Security> cvs
> OpenBSD CVS Commits> 2001-03

From: Jason Wright (jasoncvs.openbsd.org)
Date: Mon Mar 19 2001 - 10:31:20 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

CVSROOT: /cvs
Module name: src
Changes by: jasoncvs.openbsd.org 2001/03/19 09:31:19

Modified files:
gnu/usr.bin/binutils/readline: Tag: OPENBSD_2_7 history.c

Log message:
Pull in patch from current:
Errata (040, millert):
The readline library shipped with OpenBSD allows history files creation with
a permissive umask. This can lead to the leakage of sensitive information
in applications that use passwords and the like during user interaction
(one such application is mysql).

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]