| 1 |
-----Forwarded Message----- |
| 2 |
> From: Ned Ludd <solar@g.o> |
| 3 |
> To: security@g.o |
| 4 |
> Subject: minicom overflow |
| 5 |
> Date: 28 Feb 2004 13:35:46 -0500 |
| 6 |
> |
| 7 |
> Hey the other day while using PXE booting some images for some soekris |
| 8 |
> testing I'm doing I had ssp catch a minicom function go out of bounds. I |
| 9 |
> tracked this back down to in src/window.c in function winschar2() |
| 10 |
> |
| 11 |
> I have been unable to reproduce the error but have written a small patch |
| 12 |
> to try to keep everything within bounds none the less. What I'm looking |
| 13 |
> for from security@ is to make you aware that there may be a problem and |
| 14 |
> then get one of you to confirm it. Then confirm the patch is the patch |
| 15 |
> we will want to add to portage. If confirmed+patch approved by you I'll |
| 16 |
> open a bug and touch base with the minicom author. |
| 17 |
> |
| 18 |
> Source code for function that went out of bounds. |
| 19 |
> http://dev.gentoo.org/~solar/misc/window.c |
| 20 |
> |
| 21 |
> Patch that should keep things within bounds. |
| 22 |
> http://dev.gentoo.org/~solar/misc/minicom-2.1-memcpy-bounds.diff |
| 23 |
> |
| 24 |
> |
| 25 |
> -- |
| 26 |
> Ned Ludd <solar@g.o> |
| 27 |
> Gentoo Linux Developer |
| 28 |
-- |
| 29 |
Ned Ludd <solar@g.o> |
| 30 |
Gentoo Linux Developer |
Archives