d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd-skq/bin
History
jilles 8824c5ab76 sh: Fix heap-based buffer overflow in pathname generation. 
The buffer for generated pathnames could be too small in some cases. It
happened to be always at least PATH_MAX long, so there was never an overflow
if the resulting pathnames would be usable.

This bug may be abused if a script subjects input from an untrusted source
to pathname generation, which a bad idea anyhow. Most shell scripts do not
work on untrusted data. secteam@ says no advisory is necessary.

PR:		bin/148733
Reported by:	Changming Sun snnn119 at gmail com
MFC after:	10 days
2010-08-10 22:45:59 +00:00
..
cat
chflags
chio
Zero struct before reading from it
2010-06-02 09:34:41 +00:00
chmod
cp
Don't try to copy a socket after "xxx is a socket (not copied)." message.
2010-06-05 08:50:39 +00:00
csh
date
Explain that setting an absolute day value can fail and that the month should
2010-06-04 06:56:58 +00:00
dd
df
domainname
echo
ed
ed(1): make WARNS=6 clean
2010-03-04 16:08:01 +00:00
expr
getfacl
More mdoc nitpicking to improve compatibility to mdocml
2010-06-11 06:04:07 +00:00
hostname
kenv
kill
kill: Stop processing if a syntactically invalid pid is encountered.
2010-07-29 16:40:45 +00:00
ln
Spelling fixes.
2010-07-31 21:09:49 +00:00
ls
Change all our own code to use st_*tim instead of st_*timespec.
2010-03-28 13:16:08 +00:00
mkdir
mv
pax
Fix back references in substitute command for pax(1)
2010-05-24 06:33:14 +00:00
pkill
Add -l to the synopsis
2010-07-12 01:58:46 +00:00
ps
Fix alignment for the 'flags' label, and make more room for 'tdev'.
2010-07-24 15:37:36 +00:00
pwait
mdoc: order prologue macros consistently by Dd/Dt/Os
2010-04-14 19:08:06 +00:00
pwd
rcp
Change all our own code to use st_*tim instead of st_*timespec.
2010-03-28 13:16:08 +00:00
realpath
rm
rmail
Bump WARNS where possible.
2010-02-15 14:07:40 +00:00
rmdir
setfacl
Typo fix: s/ommited/omitted
2010-07-27 17:33:02 +00:00
sh
sh: Fix heap-based buffer overflow in pathname generation.
2010-08-10 22:45:59 +00:00
sleep
Document the new argument parser for sleep(1) and SIGINFO behaviour.
2010-08-02 10:59:23 +00:00
stty
sync
test
Change all our own code to use st_*tim instead of st_*timespec.
2010-03-28 13:16:08 +00:00
uuidgen
Makefile
Makefile.inc