Note: Due to technical difficulties, the Archives are currently not up to date.
GMANE provides an alternative service for most mailing lists. c.f. bug 424647
-----Forwarded Message-----
> From: Ned Ludd <solar@g.o>
> To: security@g.o
> Subject: minicom overflow
> Date: 28 Feb 2004 13:35:46 -0500
>
> Hey the other day while using PXE booting some images for some soekris
> testing I'm doing I had ssp catch a minicom function go out of bounds. I
> tracked this back down to in src/window.c in function winschar2()
>
> I have been unable to reproduce the error but have written a small patch
> to try to keep everything within bounds none the less. What I'm looking
> for from security@ is to make you aware that there may be a problem and
> then get one of you to confirm it. Then confirm the patch is the patch
> we will want to add to portage. If confirmed+patch approved by you I'll
> open a bug and touch base with the minicom author.
>
> Source code for function that went out of bounds.
> http://dev.gentoo.org/~solar/misc/window.c
>
> Patch that should keep things within bounds.
> http://dev.gentoo.org/~solar/misc/minicom-2.1-memcpy-bounds.diff
>
>
> --
> Ned Ludd <solar@g.o>
> Gentoo Linux Developer
--
Ned Ludd <solar@g.o>
Gentoo Linux Developer
|
| Attachment: |
|
signature.asc (This is a digitally signed message part)
|
|
