freebsd-dev/contrib
Ruslan Ermilov 40e7fc1a20 More potential buffer overflow fixes.
o Fixed `nfrontp' calculations in output_data().  If `remaining' is
  initially zero, it was possible for `nfrontp' to be decremented.

Noticed by:	dillon

o Replaced leaking writenet() with output_datalen():

:  * writenet
:  *
:  * Just a handy little function to write a bit of raw data to the net.
:  * It will force a transmit of the buffer if necessary
:  *
:  * arguments
:  *    ptr - A pointer to a character string to write
:  *    len - How many bytes to write
:  */
: 	void
: writenet(ptr, len)
: 	register unsigned char *ptr;
: 	register int len;
: {
: 	/* flush buffer if no room for new data) */
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
: 	if ((&netobuf[BUFSIZ] - nfrontp) < len) {
: 		/* if this fails, don't worry, buffer is a little big */
                   ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
: 		netflush();
: 	}
:
: 	memmove(nfrontp, ptr, len);
: 	nfrontp += len;
:
: }  /* end of writenet */

What an irony!  :-)

o Optimized output_datalen() a bit.
2001-07-20 12:02:30 +00:00
..
amd mdoc(7) police: removed HISTORY info from the .Os call. 2001-07-10 10:42:19 +00:00
awk Fix bug that causes gawk to choke when parsing long source files. 2000-09-04 10:42:19 +00:00
bc Fixed warning: 2001-07-12 07:35:06 +00:00
bind This commit was generated by cvs2svn to compensate for changes in r72571, 2001-02-17 15:48:22 +00:00
binutils This merges in the changes from the 2.11.2 release to the FSF anoncvs 2001-07-20 03:48:47 +00:00
bzip2 Virgin import (trimmed) of Bzip2 version 1.0.1. 2001-06-21 18:37:17 +00:00
com_err SEE ALSO is the special name, and should not be taken in quotes, 2001-02-16 11:35:39 +00:00
cpio Don't attempt to parse %c 2001-03-21 21:17:54 +00:00
cvs Flip the default for CVS_RSH to "ssh". I am tired of getting asked this 2001-02-23 04:52:30 +00:00
diff Also coerce diff(1) into working the other way (from no-\n to \n). 2000-09-15 11:35:16 +00:00
file Update for file 3.35. 2001-04-25 07:42:15 +00:00
gcc libiberty file list for the 11-July-2000 import. 2001-07-12 19:03:33 +00:00
gdb Remove the filename_completion_function() extern that conflicts with the 2001-04-14 01:49:32 +00:00
gperf Helper to trim extracted files for use when importing new versions of 2000-10-13 12:36:13 +00:00
groff This commit was generated by cvs2svn to compensate for changes in r79847, 2001-07-18 06:48:31 +00:00
ipfilter Removed duplicate copies of files already present in sys/contrib/ipfilter. 2001-06-18 15:54:04 +00:00
isc-dhcp Connect std{in,out,err} to *something* so that "hooks" scripts that write 2001-07-16 01:56:48 +00:00
less Merge vendor changes onto mainline. 2000-07-14 09:57:37 +00:00
libf2c Import of a GCC 2.96 snapshot taken from the trunk of the FSF GCC anoncvs 2000-12-14 21:42:21 +00:00
libgmp
libio Virgin import of GCC 2.95.3's libio -- the C++ iostream facility. 2001-03-19 20:49:58 +00:00
libobjc Virgin import of GCC 2.95.3's libobjc 2001-03-19 20:56:11 +00:00
libpam Fix libpam's linker set stuff to use the new API (unbreak world), and get 2001-06-14 01:13:30 +00:00
libpcap Merge libpcap 0.6.2 2001-04-03 04:32:48 +00:00
libreadline Move manpages to their original location (cvs copy to doc) 2001-04-21 22:02:18 +00:00
libstdc++ Virgin import of GCC 2.95.3's libstdc++ 2001-03-19 20:51:52 +00:00
lukemftp Import of LukeM's ftp client, version 1.5. 2001-07-19 16:26:14 +00:00
lukemftpd Import of LukeM's ftpd version 1.1. 2001-07-19 16:25:08 +00:00
ncurses This commit was generated by cvs2svn to compensate for changes in r76732, 2001-05-17 08:39:21 +00:00
ntp Do not log every potential exploit attempt since a denial-of-service 2001-04-06 14:34:15 +00:00
nvi Fix an underflow resulting from the assumption !O_ISSET(sp, O_LEFTRIGHT) 2001-07-19 11:02:11 +00:00
opie Fix SHA1 hashing. 2001-07-14 08:30:54 +00:00
patch
perl5 Resolve conflicts. 2000-08-20 09:51:08 +00:00
pnpinfo mdoc(7) police: normalize .Nd. 2001-04-18 15:54:10 +00:00
sendmail This page is in man(7) format. 2001-07-13 08:06:08 +00:00
tcp_wrappers Unbreak "paranoid" host checking, which was broken with the IPv6 code 2001-07-04 20:16:18 +00:00
tcpdump This commit was generated by cvs2svn to compensate for changes in r75147, 2001-04-04 00:11:06 +00:00
tcsh This commit was generated by cvs2svn to compensate for changes in r73393, 2001-03-03 23:45:43 +00:00
telnet More potential buffer overflow fixes. 2001-07-20 12:02:30 +00:00
texinfo
top Fix another possible bufer overflow in top. 2000-11-03 22:00:10 +00:00
traceroute Fetch the default maximum TTL value from the net.inet.ip.ttl MIB. 2001-06-06 16:12:59 +00:00