d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd kernel with SKQ
16,394 Commits 4 Branches 49 Tags 2 GiB
C 63.3%
C++ 23.3%
Roff 5.1%
Shell 2.9%
Makefile 1.5%
Other 3.4%
c8132b2e31
Go to file
wpaul c8132b2e31 Close a potential security hole: if yp_access() is passed a map name, 
have it check to see that it doesn't contain any '/' characters. This
prevents possible silliness like ypcat "../../../kernel". We already
test the domain name for this in yp_validdomain(), and ypserv itself
tests the map name in yp_open_db(), but it doesn't hurt to be paranoid
and test for it in the generic access routine too. rpc.ypxfrd does not
test the map name for slashes, but it does call yp_access() with the
map name, so this removes a potential vulnerability from there.

Also make the tests for IPPORT_RESERVED a little more selective: make
sure it trips when map == master.passwd.*, prog == YPPROC and proc ==
YPPROC_XFR, and prog == YPXFRD_FREEBSD_PROG and proc == YPXFRD_GETMAP.
Also use IPPORT_RESERVED instead of hard-coded value.
1996-09-30 22:27:00 +00:00
bin Activate LC_CTYPE locale and additionly use !isprint() for 8bit characters 1996-09-30 15:45:36 +00:00
contrib Add FreeBSD modifications 1996-09-30 19:39:25 +00:00
eBones Fix up some compilation warnings. 1996-09-22 00:55:46 +00:00
etc Fix a possible syntax error in rc when swapfile isn't defined at all. 1996-09-22 06:36:49 +00:00
games Eliminated includes of the "temporary" backwards compatibility header 1996-09-24 08:08:11 +00:00
gnu xVERSIONx -> 3.2; close PR 1404 1996-09-28 18:31:30 +00:00
include Fixed CLEANFILES. osreldate was missing. 1996-09-20 13:42:26 +00:00
lib perror () does not prepend ": " for the non-NULL argument "". close PR 1492 1996-09-30 15:39:18 +00:00
libexec add missing comma(s) in .Xr macros 1996-09-23 22:24:39 +00:00
lkm add forgotten $Id$ 1996-09-22 21:56:57 +00:00
release Correct a minor misspelling. 1996-09-29 10:03:30 +00:00
sbin Get rid of useless -f flag (though left for historical reasons). 1996-09-30 20:04:24 +00:00
secure cmp -s || install -c --> install -C 1996-08-30 04:07:04 +00:00
share Change RussiaAsia rules too to match recent zone rule change 1996-09-30 14:43:53 +00:00
sys if we jump the time, we need to check all the process real interval timers. 1996-09-30 19:28:52 +00:00
tools Fixed CLEANFILES. The *.3 links were missing. 1996-09-20 14:12:32 +00:00
usr.bin Submitted by: Bruce Evans 1996-09-29 23:09:51 +00:00
usr.sbin Close a potential security hole: if yp_access() is passed a map name, 1996-09-30 22:27:00 +00:00
COPYRIGHT This is the official 4.4 Lite copyright. 1994-09-11 07:53:28 +00:00
Makefile Unlocalize date 1996-09-21 06:06:41 +00:00