14aab889f4
(CAN-2005-0468) A heap buffer overflow in env_opt_add() and related functions. (CAN-2005-0469) A global uninitialized data section buffer overflow in slc_add_reply() and related functions. As a result of these vulnerabilities, it may be possible for a malicious telnet server or active network attacker to cause telnet(1) to execute arbitrary code with the privileges of the user running it. Security: CAN-2005-0468, CAN-2005-0469 Security: FreeBSD-SA-05:01.telnet Security: http://www.idefense.com/application/poi/display?id=220&type=vulnerabilities Security: http://www.idefense.com/application/poi/display?id=221&type=vulnerabilities These fixes are based in part on patches Submitted by: Solar Designer <solar@openwall.com> |
||
|---|---|---|
| .. | ||
| authenc.c | ||
| commands.c | ||
| defines.h | ||
| externs.h | ||
| fdset.h | ||
| general.h | ||
| main.c | ||
| network.c | ||
| ring.c | ||
| ring.h | ||
| sys_bsd.c | ||
| telnet.1 | ||
| telnet.c | ||
| terminal.c | ||
| types.h | ||
| utilities.c | ||