[3251] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Vulnrability in all known Linux distributions

daemon@ATHENA.MIT.EDU (Thomas Quinot)
Thu Aug 22 14:44:05 1996

Date: 	Wed, 21 Aug 1996 12:50:22 GMT
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Thomas Quinot <thomas@cuivre.fdn.fr>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>

Alan Brown (alan@manawatu.planet.org.nz) =E9crit :

> > The problem in this case happens to be in the libc implementation o=
f
> > realpath(), so I plan to post a patch against libc 5.3.12 shortly a=
s well, and
> The current libc is 5.3.18, a patch against this would be better. :)

It might be worthwhile noting that a mount linked against GNU libc
(future libc 6) is _not_ vulnerable to this attack (presumably GNU libc
has a correct realpath()).

--
      Thomas.Quinot@Cuivre.FdN.FR       <URL:http://Web.FdN.FR/~tquinot=
/>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3251] in bugtraq

Re: Vulnrability in all known Linux distributions

daemon@ATHENA.MIT.EDU (Thomas Quinot)Thu Aug 22 14:44:05 1996

daemon@ATHENA.MIT.EDU (Thomas Quinot)
Thu Aug 22 14:44:05 1996