Re: buffer overflow in /bin/gzip?

To: Guillaume Morin <guillaume@morinfr.org>
Cc: Anders Gjære <Anders@oslo.kvalito.no>, <debian-security@lists.debian.org>
Subject: Re: buffer overflow in /bin/gzip?
From: John Galt <galt@inconnu.isu.edu>
Date: Tue, 20 Nov 2001 16:57:01 -0700 (MST)
Message-id: <[🔎] Pine.LNX.4.33.0111201653440.2770-100000@inconnu.isu.edu>
Mail-followup-to: galt@inconnu.isu.edu
In-reply-to: <[🔎] 20011121001327.A9768@morinfr.org>

On Wed, 21 Nov 2001, Guillaume Morin wrote:

>Dans un message du 20 nov à 23:33, Anders Gjære écrivait :
>>
>> in gzip.c
>> 
>> the line:
>> 	strcpy(nbuf,dir);
>> 
>> should maybe be replaced with:
>> 	strncpy(nbuf, dir,sizeof(nbuf));
>
>gzip runs with user privileges, therefore this is not a security
>problem.
>

gzip is in vuln-dev for a buffer overflow in the argv handler.  Debian is 
apparently invulnerable, but it's a good thing to do everything we can to 
figure out more bugs in the flavor-of-the-month exploit target before the 
black hats do.  

-- 
I can be immature if I want to, because I'm mature enough to make my own 
decisions.

Who is John Galt?  galt@inconnu.isu.edu

Reply to:

Follow-Ups:
- Re: buffer overflow in /bin/gzip?
  - From: Bryan Andersen <bryan@visi.com>

References:
- Re: buffer overflow in /bin/gzip?
  - From: Guillaume Morin <guillaume@morinfr.org>

Prev by Date: Re: WAY OT (Re: In Praise of Dos (RE: Mutt & tmp files))
Next by Date: RE: Mutt & tmp files -- Root is not my Enemy
Previous by thread: Re: buffer overflow in /bin/gzip?
Next by thread: Re: buffer overflow in /bin/gzip?
Index(es):
- Date
- Thread