Re: ncurses buffer overflows (fwd)

bug-ncurses

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ncurses buffer overflows (fwd)

From:	Thomas E. Dickey
Subject:	Re: ncurses buffer overflows (fwd)
Date:	Mon, 2 Oct 2000 13:39:23 -0400 (EDT)

On Mon, 2 Oct 2000, [iso-8859-1] Jouko Pynn?nen wrote:

> 
> On Mon, 2 Oct 2000, Thomas E. Dickey wrote:
> 
> > I'd like to see the exploit: there are too many perhaps/maybes in this
> 
> This is a demonstration script I sent to linux people on
> address@hidden, works straight on rh-6.2 and SuSE-6.4, other platforms
> may need fiddling with the number values...

...and does it break if we limit the strcpy's in lib_mvcur.c ?

(it's a small change to relatively stable code: it would make more sense
to distribute the patch than rely on someone else to deduce it).

-- 
T.E.Dickey <address@hidden>
http://dickey.his.com
ftp://dickey.his.com

[Prev in Thread]

Current Thread

[Next in Thread]

ncurses buffer overflows (fwd), Jouko Pynnönen, 2000/10/02
- Re: ncurses buffer overflows (fwd), Thomas E. Dickey, 2000/10/02
  - Re: ncurses buffer overflows (fwd), Jouko Pynnönen, 2000/10/02
    - Re: ncurses buffer overflows (fwd), Thomas E. Dickey <=
    - Re: ncurses buffer overflows (fwd), Jouko Pynnönen, 2000/10/02
    - Re: ncurses buffer overflows (fwd), Thomas E. Dickey, 2000/10/02

Prev by Date: Re: ncurses buffer overflows (fwd)
Next by Date: Re: ncurses buffer overflows (fwd)
Previous by thread: Re: ncurses buffer overflows (fwd)
Next by thread: Re: ncurses buffer overflows (fwd)
Index(es):
- Date
- Thread