Re: buffer overflow in /bin/gzip?

To: debian-security@lists.debian.org
Cc: Anders Gj?re <Anders@oslo.kvalito.no>
Subject: Re: buffer overflow in /bin/gzip?
From: Wichert Akkerman <wichert@wiggy.net>
Date: Wed, 21 Nov 2001 00:24:43 +0100
Message-id: <[🔎] 20011121002442.H7848@wiggy.net>
Mail-followup-to: debian-security@lists.debian.org, Anders Gj?re <Anders@oslo.kvalito.no>
In-reply-to: <[🔎] 20011121001327.A9768@morinfr.org>
References: <[🔎] 010B55064719D511AEBD00500488036212F40C@sekunda5.oslo.kvalito.no> <[🔎] 20011121001327.A9768@morinfr.org>

Previously Guillaume Morin wrote:
> gzip runs with user privileges, therefore this is not a security
> problem.

But a fair amount of privileged programs do run gzip so it can be
a security problem. 

Wichert.

-- 
  _________________________________________________________________
 /wichert@wiggy.net         This space intentionally left occupied \
| wichert@deephackmode.org            http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0  2805 3CB8 9250 2FA3 BC2D |

Reply to:

References:
- buffer overflow in /bin/gzip?
  - From: Anders Gjære <Anders@oslo.kvalito.no>
- Re: buffer overflow in /bin/gzip?
  - From: Guillaume Morin <guillaume@morinfr.org>

Prev by Date: Re: buffer overflow in /bin/gzip?
Next by Date: Re: WAY OT (Re: In Praise of Dos (RE: Mutt & tmp files))
Previous by thread: Re: buffer overflow in /bin/gzip?
Next by thread: Re: buffer overflow in /bin/gzip?
Index(es):
- Date
- Thread