Invalid memory access / read stack overflow when reading config with zero bytes
Hanno Böck
hanno at hboeck.de
Mon Mar 30 11:17:48 AEDT 2015
On Mon, 30 Mar 2015 10:43:18 +1100 (AEDT)
Damien Miller <djm at mindrot.org> wrote:
> reproduced; the line numbers were wrong.
Sorry for the line numbers, should've thought of that. I used the
standard Gentoo package and it seems it does patching on that file.
I can confirm your patch fixes the issue, thanks. Will now run another
fuzzing job with the patch applied, will inform you if it finds
anything.
--
Hanno Böck
http://hboeck.de/
mail/jabber: hanno at hboeck.de
GPG: BBB51E42
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20150330/b5429a57/attachment-0001.bin>
More information about the openssh-unix-dev
mailing list