Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: ncurses buffer overflows
From: Brett Lymn <blymn () BAESYSTEMS COM AU>
Date: Tue, 10 Oct 2000 11:37:12 +0930
According to =?iso-8859-1?Q?Jouko_Pynn=F6nen?=:


The problem has been tested and found on



FWIW - no version of NetBSD is distributed with ncurses as the base
curses library, it is available in the package system as an addon.
There are no str* calls performed on user supplied data (including the
termcap information) and we use a new termcap interface that bounds
checks information from the termcap entries.  An audit of the NetBSD
source tree was performed in May to replace the old, unbounded,
termcap interface with the updated one.

Hint:  how many programs in _your_ source tree use tgetstr (perhaps
none which is a good thing)?

--
===============================================================================
Brett Lymn, Computer Systems Administrator, BAE SYSTEMS
===============================================================================

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]