Bug#507232: rrootage: buffer overflow when handling environmental variables
Raphael Geissert
atomo64 at gmail.com
Sat Nov 29 05:27:22 UTC 2008
Package: rrootage
Version: 0.23a-8
Severity: normal
Hi,
While scanning some packages I found the following piece of code which leads
to a buffer overflow when an overly long HOME env var is used.
Affected code (src/attractmanager.c twice):
> char *tmpname;
> char name[128];
>
> tmpname = getenv("HOME");
> strcpy(name, tmpname);
Cheers,
--
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
Url : http://lists.alioth.debian.org/pipermail/pkg-games-devel/attachments/20081128/697bfb70/attachment.pgp
More information about the Pkg-games-devel
mailing list