From c1e62ab3a6caba8f528c7359e318b14f7fc25342 Mon Sep 17 00:00:00 2001 From: seb Date: Sat, 14 Jan 2006 00:52:33 +0000 Subject: Update to version 2.3.2. Changes since last packaged version (2.3.0): 2.3.2 - fixed segfault due to checking the length of variables that I forgot to remove from build_arg_vector() since the chroot root exploit fix in 2.3.0 2.3.1 - fixed stupid bug that caused rssh not to allow rsync and rdist --- shells/rssh/patches/patch-ab | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 shells/rssh/patches/patch-ab (limited to 'shells/rssh/patches') diff --git a/shells/rssh/patches/patch-ab b/shells/rssh/patches/patch-ab new file mode 100644 index 00000000000..db8527bb574 --- /dev/null +++ b/shells/rssh/patches/patch-ab @@ -0,0 +1,26 @@ +$NetBSD: patch-ab,v 1.1 2006/01/14 00:52:33 seb Exp $ + +--- main.c.in.orig 2006-01-03 17:25:05.000000000 +0000 ++++ main.c.in +@@ -195,7 +195,7 @@ char **build_shell_args( struct passwd u + * build_arg_vector() in the chroot helper instead... + */ + +- if ( !(argvec = (char **)malloc(6 * sizeof (char *))) ){ ++ if ( !(argvec = (char **)malloc(4 * sizeof (char *))) ){ + log_set_priority(LOG_ERR); + log_msg("OOM error in build_shell_args() (fatal)"); + exit(1); +@@ -226,9 +226,9 @@ char **build_shell_args( struct passwd u + /* change the command to run to the chroot helper */ + *cmd = PATH_CHROOT_HELPER; + +- /* set up buffer to log command line ('"' + ' ' + '\0' = 9) */ +- len = strlen(cmdline) + strlen(argvec[2]) + +- strlen(PATH_CHROOT_HELPER) + 9; ++ /* set up buffer to log command line (argvec[1] + '"' + ' ' + '\0' = 6) */ ++ len = strlen(cmdline) + ++ strlen(PATH_CHROOT_HELPER) + 6; + if ( !(temp = (char *)malloc(len)) ){ + log_set_priority(LOG_ERR); + log_msg("OOM error in build_shell_args() (fatal)"); -- cgit v1.2.3