diff options
| author | dillon <dillon@FreeBSD.org> | 1998-12-12 20:56:53 +0000 |
|---|---|---|
| committer | dillon <dillon@FreeBSD.org> | 1998-12-12 20:56:53 +0000 |
| commit | 4a5ab955ca5be11c420646ad76e13e55113ada02 (patch) | |
| tree | cb180465aa335673609f1e7287bf6aecdbca4588 /libexec/bootpd | |
| parent | 9d72935e7288817dc8948e0dcb0edd0d40c2c937 (diff) | |
| download | FreeBSD-src-4a5ab955ca5be11c420646ad76e13e55113ada02.zip FreeBSD-src-4a5ab955ca5be11c420646ad76e13e55113ada02.tar.gz | |
PR: bin/9031
Changed unbounded strcpy() to snprintf() to fix buffer overrun exploit
Diffstat (limited to 'libexec/bootpd')
| -rw-r--r-- | libexec/bootpd/bootpd.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/libexec/bootpd/bootpd.c b/libexec/bootpd/bootpd.c index 68e35d5..99d0351 100644 --- a/libexec/bootpd/bootpd.c +++ b/libexec/bootpd/bootpd.c @@ -19,7 +19,7 @@ PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. - $Id: bootpd.c,v 1.7 1997/05/11 14:27:03 phk Exp $ + $Id: bootpd.c,v 1.8 1998/06/03 20:01:28 joerg Exp $ ************************************************************************/ @@ -833,7 +833,7 @@ HW addr type is IEEE 802. convert to %s and check again\n", * daemon chroot directory (i.e. /tftpboot). */ if (hp->flags.tftpdir) { - strcpy(realpath, hp->tftpdir->string); + snprintf(realpath, sizeof(realpath), "%s", hp->tftpdir->string); clntpath = &realpath[strlen(realpath)]; } else { realpath[0] = '\0'; |
