[16574] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: screen 3.9.5 root vulnerability

daemon@ATHENA.MIT.EDU (abs@PURPLEI.COM)
Tue Sep 5 12:45:40 2000

Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id:  <Pine.NEB.4.21.0009051200460.279-100000@odysseus.mono.org>
Date:         Tue, 5 Sep 2000 12:03:02 +0100
Reply-To: abs@PURPLEI.COM
From: abs@PURPLEI.COM
X-To:         =?latin1?Q?Jouko_Pynn=F6nen?= <jouko@SOLUTIONS.FI>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <Pine.LNX.4.10.10009050126090.10855-100000@shell.solutions.fi>

	Fix applied to NetBSD pkgsrc on 1st september. NetBSD pkgsrc
	users should confirm they have screen-3.9.5nb1 or later.

	For reference, patch applied:

$NetBSD: patch-ah,v 1.2 2000/09/01 15:23:51 kim Exp $

--- screen.c.orig	Wed Sep  1 17:57:25 1999
+++ screen.c	Fri Sep  1 11:22:45 2000
@@ -2311,7 +2311,7 @@
 	      else if (visual && !D_VB && (!D_status || !D_status_bell))
 		{
 		  D_status_delayed = -1;
-		  Msg(0, VisualBellString);
+		  Msg(0, "%s", VisualBellString);
 		  if (D_status)
 		    {
 		      D_status_bell = 1;

		David/absolute
				       -- www.netbsd.org: No hype required --


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[16574] in bugtraq

Re: screen 3.9.5 root vulnerability

daemon@ATHENA.MIT.EDU (abs@PURPLEI.COM)Tue Sep 5 12:45:40 2000

daemon@ATHENA.MIT.EDU (abs@PURPLEI.COM)
Tue Sep 5 12:45:40 2000