d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1c3734f021
freebsd-skq/bin
History
jilles 8824c5ab76 sh: Fix heap-based buffer overflow in pathname generation. 
The buffer for generated pathnames could be too small in some cases. It
happened to be always at least PATH_MAX long, so there was never an overflow
if the resulting pathnames would be usable.

This bug may be abused if a script subjects input from an untrusted source
to pathname generation, which a bad idea anyhow. Most shell scripts do not
work on untrusted data. secteam@ says no advisory is necessary.

PR:		bin/148733
Reported by:	Changming Sun snnn119 at gmail com
MFC after:	10 days
2010-08-10 22:45:59 +00:00
..
cat
chflags
chio
chmod
cp Don't try to copy a socket after "xxx is a socket (not copied)." message. 2010-06-05 08:50:39 +00:00
csh
date Explain that setting an absolute day value can fail and that the month should 2010-06-04 06:56:58 +00:00
dd
df
domainname
echo
ed
expr
getfacl More mdoc nitpicking to improve compatibility to mdocml 2010-06-11 06:04:07 +00:00
hostname
kenv
kill kill: Stop processing if a syntactically invalid pid is encountered. 2010-07-29 16:40:45 +00:00
ln Spelling fixes. 2010-07-31 21:09:49 +00:00
ls
mkdir
mv
pax
pkill Add -l to the synopsis 2010-07-12 01:58:46 +00:00
ps Fix alignment for the 'flags' label, and make more room for 'tdev'. 2010-07-24 15:37:36 +00:00
pwait
pwd
rcp
realpath
rm
rmail
rmdir
setfacl Typo fix: s/ommited/omitted 2010-07-27 17:33:02 +00:00
sh sh: Fix heap-based buffer overflow in pathname generation. 2010-08-10 22:45:59 +00:00
sleep Document the new argument parser for sleep(1) and SIGINFO behaviour. 2010-08-02 10:59:23 +00:00
stty
sync
test
uuidgen
Makefile
Makefile.inc