Possible buffer overflows = security problem?

To: debian-security@lists.debian.org
Subject: Possible buffer overflows = security problem?
From: Frank Lichtenheld <djpig@djpig.de>
Date: Fri, 5 Sep 2003 16:47:30 +0200
Message-id: <[🔎] 20030905144729.GE545@djpigpb>

Hi.

I recently adopted the magpie package (It reads in Packages files and
produces HTML output)

It was un/undermaintained a long time and has no separate upstream.
While looking in the code to fix some outstanding bugs I found
several code pieces like

char path[256];
sprintf( path, "some string/%s", packagename);

There are no further checks as I can see. I'm not very experienced in C
programming and don't know much about the details of exploiting buffer
overflows or the like...

Is such code (away from the fact that it can easily lead to segfaults) a
security problem?

Thanks,
-- 
Frank Lichtenheld <frank@lichtenheld.de>
www: http://www.djpig.de/

Reply to:

Follow-Ups:
- Re: Possible buffer overflows = security problem?
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: Possible buffer overflows = security problem?
  - From: Lars Ellenberg <l.g.e@web.de>
- Re: Possible buffer overflows = security problem?
  - From: Michal Melewski <mike@pn66.poznan.sdi.tpnet.pl>
- Re: Possible buffer overflows = security problem?
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Possible buffer overflows = security problem?
  - From: Thomas Horsten <thomas@horsten.com>
- Re: Possible buffer overflows = security problem?
  - From: Wade Richards <wade@wabyn.net>

Prev by Date: Re: 2.4.21 IPSEC problems
Next by Date: Re: Possible buffer overflows = security problem?
Previous by thread: Re: Kernel 2.4.21+grsecurity+p-o-m
Next by thread: Re: Possible buffer overflows = security problem?
Index(es):
- Date
- Thread