diff options
| author | kris <kris@FreeBSD.org> | 2000-08-13 04:35:43 +0000 |
|---|---|---|
| committer | kris <kris@FreeBSD.org> | 2000-08-13 04:35:43 +0000 |
| commit | f7413271b54af36be809a0aa49c6ea90c2eeff27 (patch) | |
| tree | 87aa12f303e6a90bde9816980ffbc398ba67b9a7 | |
| parent | 24d61c1ea6524a1b7910f56be8efa8856dc8def0 (diff) | |
| download | FreeBSD-src-f7413271b54af36be809a0aa49c6ea90c2eeff27.zip FreeBSD-src-f7413271b54af36be809a0aa49c6ea90c2eeff27.tar.gz | |
Fix setproctitle() vulnerability in non-compiled code.
| -rw-r--r-- | crypto/kerberosIV/appl/ftp/ftpd/ftpd.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/crypto/kerberosIV/appl/ftp/ftpd/ftpd.c b/crypto/kerberosIV/appl/ftp/ftpd/ftpd.c index 70ea6bf..518b5bf 100644 --- a/crypto/kerberosIV/appl/ftp/ftpd/ftpd.c +++ b/crypto/kerberosIV/appl/ftp/ftpd/ftpd.c @@ -786,7 +786,7 @@ int do_login(int code, char *passwd) "%s: anonymous/%s", remotehost, passwd); - setproctitle(proctitle); + setproctitle("%s", proctitle); #endif /* HAVE_SETPROCTITLE */ if (logging) { char data_addr[256]; @@ -807,7 +807,7 @@ int do_login(int code, char *passwd) reply(code, "User %s logged in.", pw->pw_name); #ifdef HAVE_SETPROCTITLE snprintf(proctitle, sizeof(proctitle), "%s: %s", remotehost, pw->pw_name); - setproctitle(proctitle); + setproctitle("%s", proctitle); #endif /* HAVE_SETPROCTITLE */ if (logging) { char data_addr[256]; @@ -1782,7 +1782,7 @@ dolog(struct sockaddr *sa) inaddr2str (sin->sin_addr, remotehost, sizeof(remotehost)); #ifdef HAVE_SETPROCTITLE snprintf(proctitle, sizeof(proctitle), "%s: connected", remotehost); - setproctitle(proctitle); + setproctitle("%s", proctitle); #endif /* HAVE_SETPROCTITLE */ if (logging) { |
