![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / src / libexec / talkd
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: netbsd-4-0-1-RELEASE
Revision 1.3 / (download) - annotate - [select for diffs], Thu Sep 19 14:39:51 2002 UTC (21 years, 7 months ago) by itojun
Branch: MAIN
CVS Tags: wrstuden-fixsa-newbase,
wrstuden-fixsa-base-1,
wrstuden-fixsa-base,
wrstuden-fixsa,
netbsd-4-base,
netbsd-4-0-RELEASE,
netbsd-4-0-RC5,
netbsd-4-0-RC4,
netbsd-4-0-RC3,
netbsd-4-0-RC2,
netbsd-4-0-RC1,
netbsd-4-0-1-RELEASE,
netbsd-4-0,
netbsd-4,
netbsd-3-base,
netbsd-3-1-RELEASE,
netbsd-3-1-RC4,
netbsd-3-1-RC3,
netbsd-3-1-RC2,
netbsd-3-1-RC1,
netbsd-3-1-1-RELEASE,
netbsd-3-1,
netbsd-3-0-RELEASE,
netbsd-3-0-RC6,
netbsd-3-0-RC5,
netbsd-3-0-RC4,
netbsd-3-0-RC3,
netbsd-3-0-RC2,
netbsd-3-0-RC1,
netbsd-3-0-3-RELEASE,
netbsd-3-0-2-RELEASE,
netbsd-3-0-1-RELEASE,
netbsd-3-0,
netbsd-3,
netbsd-2-base,
netbsd-2-1-RELEASE,
netbsd-2-1-RC6,
netbsd-2-1-RC5,
netbsd-2-1-RC4,
netbsd-2-1-RC3,
netbsd-2-1-RC2,
netbsd-2-1-RC1,
netbsd-2-1,
netbsd-2-0-base,
netbsd-2-0-RELEASE,
netbsd-2-0-RC5,
netbsd-2-0-RC4,
netbsd-2-0-RC3,
netbsd-2-0-RC2,
netbsd-2-0-RC1,
netbsd-2-0-3-RELEASE,
netbsd-2-0-2-RELEASE,
netbsd-2-0-1-RELEASE,
netbsd-2-0,
netbsd-2,
fvdl_fs64_base,
abandoned-netbsd-4-base,
abandoned-netbsd-4
Changes since 1.2: +2 -2
lines
Diff to previous 1.2 (colored)
find_user() in process.c does an unbounded copy into a destination buffer that is smaller in size than the source buffer. also, there is no guarantee that any of the string components of the request packet are null terminated. in some cases, not all elements of the response buffer are explicitly set. specifically pad and addr. a talk client can spy to see which host is talking to which host by sending out regular packets, to which talkd responds without clearing the addr element. from xs@kittenz.org