Bug#113732: not paranoid enough about device name

bug-hurd

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Bug#113732: not paranoid enough about device name

From:	Marcus Brinkmann
Subject:	Bug#113732: not paranoid enough about device name
Date:	Fri, 28 Sep 2001 02:09:08 +0200
User-agent:	Mutt/1.3.22i

Package: gnumach

gnumach device_open is not paranoid enough about the device name.  I haven't
tried it, but I think that having 128 non-digits with no trailing zero will
make gnumach run past the buffer in dev_name_lookup.

Maybe not worth fixing for gnumach (esp as opening a device requires the
device master port anyway).  But it reminds me of the broader issue of the
necessity to audit the code, esp at the borders caused by user supplied
data.

Thanks,
Marcus

-- 
`Rhubarb is no Egyptian god.' Debian http://www.debian.org brinkmd@debian.org
Marcus Brinkmann              GNU    http://www.gnu.org    marcus@gnu.org
Marcus.Brinkmann@ruhr-uni-bochum.de
http://www.marcus-brinkmann.de

[Prev in Thread]

Current Thread

[Next in Thread]

Bug#113732: not paranoid enough about device name, Marcus Brinkmann <=

Prev by Date: Re: default pager using legacy interfaces
Next by Date: Re: default pager using legacy interfaces
Previous by thread: mach_port_t vs task_t (really ipc_space_t) in Mach header files
Next by thread: Re: nbd-server
Index(es):
- Date
- Thread