[33983] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Calife heap corrupt / potential local root exploit

daemon@ATHENA.MIT.EDU (Ollivier Robert)
Fri Feb 27 16:10:50 2004

Date: Fri, 27 Feb 2004 21:18:08 +0100
From: Ollivier Robert <roberto@keltia.freenix.fr>
To: Carson Gaspar <carson+bugtraq@taltos.org>
Cc: bugtraq@securityfocus.com
Message-ID: <20040227201808.GA24705@tara.freenix.org>
Mail-Followup-To: Carson Gaspar <carson+bugtraq@taltos.org>,
	bugtraq@securityfocus.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <189080000.1077912530@taltos.ny.ficc.gs.com>

According to Carson Gaspar:
> This is why you shouldn't make such assumptions. Never assume someone else 
> validated your input. If you want to write secure code, assume every 

That's why I just released 2.8.6 which correct this.

I'm thankful of the problem but I'd rather been informed before it goes in the
wild.
-- 
Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr
Darwin snuadh.freenix.org Kernel Version 7.2.0: Thu Dec 11 16:20:23 PST 2003


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[33983] in bugtraq

Re: Calife heap corrupt / potential local root exploit

daemon@ATHENA.MIT.EDU (Ollivier Robert)Fri Feb 27 16:10:50 2004

daemon@ATHENA.MIT.EDU (Ollivier Robert)
Fri Feb 27 16:10:50 2004