diff options
| author | nectar <nectar@FreeBSD.org> | 2001-04-27 18:15:34 +0000 |
|---|---|---|
| committer | nectar <nectar@FreeBSD.org> | 2001-04-27 18:15:34 +0000 |
| commit | 3d3b4c365b37791b3d74ced893445f51f21986c2 (patch) | |
| tree | dc5fa8995f1f3213c21bace427b2787ab1fc7b9e /security | |
| parent | c87c369f4279d8f0ea3db78a39de6386593cc7d3 (diff) | |
| download | FreeBSD-ports-3d3b4c365b37791b3d74ced893445f51f21986c2.zip FreeBSD-ports-3d3b4c365b37791b3d74ced893445f51f21986c2.tar.gz | |
Security fix:
``Buffer overflows exist in the FTP daemon included with MIT krb5.''
See <URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf.txt> and
<URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf_122_patch.txt>.
Obtained from: MIT Kerberos mailing list
Diffstat (limited to 'security')
| -rw-r--r-- | security/krb5-16/files/patch-bd | 19 | ||||
| -rw-r--r-- | security/krb5-17/files/patch-bd | 19 | ||||
| -rw-r--r-- | security/krb5-appl/files/patch-bd | 19 | ||||
| -rw-r--r-- | security/krb5/files/patch-bd | 19 |
4 files changed, 76 insertions, 0 deletions
diff --git a/security/krb5-16/files/patch-bd b/security/krb5-16/files/patch-bd new file mode 100644 index 0000000..b2bf412 --- /dev/null +++ b/security/krb5-16/files/patch-bd @@ -0,0 +1,19 @@ +--- appl/gssftp/ftpd/ftpcmd.y.ORIG Wed Feb 28 16:06:45 2001 ++++ appl/gssftp/ftpd/ftpcmd.y Fri Apr 27 10:18:01 2001 +@@ -805,11 +805,13 @@ + * This is a valid reply in some cases but not in others. + */ + if (logged_in && $1 && strncmp((char *) $1, "~", 1) == 0) { +- *(char **)&($$) = *ftpglob((char *) $1); +- if (globerr != NULL) { ++ char **vv; ++ vv = ftpglob((char *) $1); ++ if (vv == NULL || globerr != NULL) { + reply(550, globerr); + $$ = NULL; +- } ++ } else ++ $$ = *vv; + free((char *) $1); + } else + $$ = $1; diff --git a/security/krb5-17/files/patch-bd b/security/krb5-17/files/patch-bd new file mode 100644 index 0000000..b2bf412 --- /dev/null +++ b/security/krb5-17/files/patch-bd @@ -0,0 +1,19 @@ +--- appl/gssftp/ftpd/ftpcmd.y.ORIG Wed Feb 28 16:06:45 2001 ++++ appl/gssftp/ftpd/ftpcmd.y Fri Apr 27 10:18:01 2001 +@@ -805,11 +805,13 @@ + * This is a valid reply in some cases but not in others. + */ + if (logged_in && $1 && strncmp((char *) $1, "~", 1) == 0) { +- *(char **)&($$) = *ftpglob((char *) $1); +- if (globerr != NULL) { ++ char **vv; ++ vv = ftpglob((char *) $1); ++ if (vv == NULL || globerr != NULL) { + reply(550, globerr); + $$ = NULL; +- } ++ } else ++ $$ = *vv; + free((char *) $1); + } else + $$ = $1; diff --git a/security/krb5-appl/files/patch-bd b/security/krb5-appl/files/patch-bd new file mode 100644 index 0000000..b2bf412 --- /dev/null +++ b/security/krb5-appl/files/patch-bd @@ -0,0 +1,19 @@ +--- appl/gssftp/ftpd/ftpcmd.y.ORIG Wed Feb 28 16:06:45 2001 ++++ appl/gssftp/ftpd/ftpcmd.y Fri Apr 27 10:18:01 2001 +@@ -805,11 +805,13 @@ + * This is a valid reply in some cases but not in others. + */ + if (logged_in && $1 && strncmp((char *) $1, "~", 1) == 0) { +- *(char **)&($$) = *ftpglob((char *) $1); +- if (globerr != NULL) { ++ char **vv; ++ vv = ftpglob((char *) $1); ++ if (vv == NULL || globerr != NULL) { + reply(550, globerr); + $$ = NULL; +- } ++ } else ++ $$ = *vv; + free((char *) $1); + } else + $$ = $1; diff --git a/security/krb5/files/patch-bd b/security/krb5/files/patch-bd new file mode 100644 index 0000000..b2bf412 --- /dev/null +++ b/security/krb5/files/patch-bd @@ -0,0 +1,19 @@ +--- appl/gssftp/ftpd/ftpcmd.y.ORIG Wed Feb 28 16:06:45 2001 ++++ appl/gssftp/ftpd/ftpcmd.y Fri Apr 27 10:18:01 2001 +@@ -805,11 +805,13 @@ + * This is a valid reply in some cases but not in others. + */ + if (logged_in && $1 && strncmp((char *) $1, "~", 1) == 0) { +- *(char **)&($$) = *ftpglob((char *) $1); +- if (globerr != NULL) { ++ char **vv; ++ vv = ftpglob((char *) $1); ++ if (vv == NULL || globerr != NULL) { + reply(550, globerr); + $$ = NULL; +- } ++ } else ++ $$ = *vv; + free((char *) $1); + } else + $$ = $1; |
