[15162] in Athena Bugs
patch for buffer overflow in discussd
daemon@ATHENA.MIT.EDU (mhpower@MIT.EDU)
Tue May 20 01:50:18 1997
From: mhpower@MIT.EDU
To: bugs@MIT.EDU, sipb-athena-bugs@MIT.EDU, bug-discuss@MIT.EDU
Date: Tue, 20 May 1997 01:50:10 EDT
The old 50-character buffer size should be sufficient for disserve, or
for versions of discussd built without Kerberos, as long as the system
has usernames limited to 8 characters and the value of REALM chosen in
the configuration has 40 characters or fewer.
Matt
*** /afs/dev.mit.edu/source/src-current/athena/bin/discuss/server/rpproc.c Fri Sep 20 12:12:50 1996
--- rpproc.c Tue May 20 00:38:33 1997
***************
*** 90,92 ****
--- 90,96 ----
/* global */
+ #ifdef KERBEROS
+ char rpc_caller[MAX_K_NAME_SZ + 1];
+ #else
char rpc_caller[50];
+ #endif
static long hostaddr;
