[15559] in bugtraq
Re: WuFTPD: Providing *remote* root since at least1994
daemon@ATHENA.MIT.EDU (Valentin Nechayev)
Thu Jun 29 15:15:43 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 8bit
Message-Id: <20000629145946.A17699@lucky.net>
Date: Thu, 29 Jun 2000 14:59:47 +0300
Reply-To: netch@lucky.net
From: Valentin Nechayev <netch@LUCKY.NET>
X-To: Theo de Raadt <deraadt@CVS.OPENBSD.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <200006282246.e5SMkFv00731@cvs.openbsd.org>; from
deraadt@CVS.OPENBSD.ORG on Wed, Jun 28, 2000 at 04:46:15PM -0600
Wed, Jun 28, 2000 at 16:46:15, deraadt wrote about "Re: WuFTPD: Providing *remote* root since at least1994":
> > a) Returns -1 and raw truncate without \0
> >
> > b) Returns -1 and truncate with a \0
> Can you please list the vendors who have the incorrect behaviours you
> described in (a) and (b) so that we can properly bitch at them?
(b) - GNU libc versions:
==={
RETURN VALUE
If the output was truncated, the return value is -1, oth-
erwise it is the number of characters stored, not includ-
ing the terminating null. (Thus until glibc 2.0.6. Since
glibc 2.1 these functions return the number of characters
(excluding the trailing null) which would have been writ-
ten to the final string if enough space had been avail-
able.)
===}
(a) - Microsoft VC++ CRT (version 6.0 tested).
--
NVA
