Bug#280492: kernel-source-2.4.27: strncpy does not 0-pad destination on some archs

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#280492: kernel-source-2.4.27: strncpy does not 0-pad destination on some archs
From: Stefan Fritsch <sf@sfritsch.de>
Date: Tue, 09 Nov 2004 21:55:14 +0100
Message-id: <[🔎] E1CRd1G-0008Cg-7G@k.local>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 280492@bugs.debian.org

Package: kernel-source-2.4.27
Version: 2.4.27-5
Severity: normal
Tags: security


This doesn't seem to be fixed in the debian 2.4.x kernels:

CAN-2003-0465:
The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the
buffer on architectures other than x86, as opposed to the expected
behavior of strncpy as implemented in libc, which could lead to
information leaks.

The generic .c version of strncpy is fixed in 2.6.x but not in 2.4.x .

The x86 and ppc32 specific asm versions are fixed, but alpha, s390x, ppc64,
m68k, mips, and s390 seem to be unfixed. (However, I don't really understand
these assembler versions. Maybe someone who does could also check the 2.6 asm
versions).

Reply to:

Prev by Date: Bug#280480: kernel-image-2.4.27-1-586tsc: No suitable image for Via C3
Next by Date: Bug#279889: fixed for 2.6.10-rc1
Previous by thread: Bug#280480: kernel-image-2.4.27-1-586tsc: No suitable image for Via C3
Next by thread: Bug#280571: initrd-tools: Should initialize only LVM VG needed for root fs, not all
Index(es):
- Date
- Thread