Displaying 20 results from an estimated 600 matches similar to: "Linux NLSPATH buffer overflow (fwd)"
1997 May 14
4
cxterm buffer overrun
cxterm is a Chinese terminal emulator for the X Window System.
It''s installed as suid-root by default if you did a make install.
Just like xterm, it does needs to be suid to update
/etc/utmp...blahblah...
I discovered some buffer overflow bugs in it. The code
attached below is the exploit.
Quick fix? chmod -s /path/cxterm
1997 Sep 26
3
Forwarded mail....
I was surprised to see that this hadn't made it to the samba list yet.
Note I have not spent any time trying to confirm validity.
---------- Forwarded message ----------
Date: Fri, 26 Sep 1997 00:21:55 +0200
From: root <root@ADM.KIX-AZZ.ORG>
To: BUGTRAQ@NETSPACE.ORG
/*
___ ______ _ _
/ \ | _ \ | \ / |
1997 Nov 13
0
another buffer overrun in sperl5.003
Summary:
Any user can gain root privileges on a Intel Linux system with suidperl
5.003 (having the suid bit, of course) even if "SUIDBUF" and "two suidperl
security patches" have been applied. Non-Intel / non-Linux platforms may
be affected as well.
Quick fix:
chmod u-s /usr/bin/sperl5.003 (what else?)
Details:
There is a nasty bug in mess() (util.c): it is possible to
2012 Dec 15
1
virt-resize Fatal error: exception Guestfs.Error("e2fsck_f
We?ve been seeing this a lot lately on generic CentOS 6 rpm installs:
rpm -qa | grep libguestfs
libguestfs-java-1.16.19-1.el6.x86_64
libguestfs-java-devel-1.16.19-1.el6.x86_64
libguestfs-1.16.19-1.el6.x86_64
libguestfs-tools-1.16.19-1.el6.x86_64
libguestfs-javadoc-1.16.19-1.el6.x86_64
libguestfs-devel-1.16.19-1.el6.x86_64
libguestfs-tools-c-1.16.19-1.el6.x86_64
2002 Jul 02
0
pam and openssh
All,
I'm trying to use PAM to replicate the authorized user functionality in
commercial ssh. In the past, I've patched openssh to do this, but I think
that solution is fairly ugly (and requires me to patch with each new
release of openssh which is really bad).
I want to do this:
0. use openssh for all communication with this machine.
1. check a user's identity using their
2017 Mar 14
0
Re: virt-customize fail to inject firstboot script when running it from script.
On Mon, Mar 13, 2017 at 11:48:05PM +0200, Keresztes Péter-Zoltán wrote:
> Hello,
>
> We have a nodejs app which is injecting first boot scripts using virt-customize however the exact same commands are working when triggered manually.
>
> Here is the debug output of the commands
Which version of virt-customize? A number of bugs were fixed in this
part of the code in the last
2017 Mar 14
2
Re: virt-customize fail to inject firstboot script when running it from script.
I am running libguestfs version 1.34.2
The issue is the following. When I start the vm with virt-log I see this:
Mar 13 17:33:30 multi6 firstboot.sh[358]: /usr/lib/virt-sysprep/firstboot.sh start
Mar 13 17:33:30 multi6 cron[359]: (CRON) INFO (Running @reboot jobs)
Mar 13 17:33:30 multi6 firstboot.sh[358]: Scripts dir: /usr/lib/virt-sysprep/scripts
Mar 13 17:33:30 multi6 firstboot.sh[358]: ===
1996 Dec 15
0
vixie-crontab for redhat linux
/* vixie crontab buffer overflow for RedHat Linux
*
* I dont think too many people know that redhat uses vixie crontab.
* I didn''t find this, just exploited it.
*
*
* Dave G.
* <daveg@escape.com>
* http://www.escape.com/~daveg
*
*
*/
#include <stdio.h>
#include <sys/types.h>
#include <stdlib.h>
#include <fcntl.h>
#include <unistd.h>
#define
1997 Apr 27
0
Overflow in xlock (fwd)
-| == Marcin Bohosiewicz marcus@venus.wis.pk.edu.pl == |-
-| == tel. +048 (0-12) 37-44-99 marcus@krakow.linux.org.pl == |-
-| == Strona Domowa - http://venus.wis.pk.edu.pl/marcus/ == |-
---------- Forwarded message ----------
Date: Sat, 26 Apr 1997 16:16:05 -0400
From: George Staikos <staikos@0WNED.ORG>
Approved: R.E.Wolff@BitWizard.nl
To: BUGTRAQ@NETSPACE.ORG
Subject:
2017 Mar 13
2
virt-customize fail to inject firstboot script when running it from script.
Hello,
We have a nodejs app which is injecting first boot scripts using virt-customize however the exact same commands are working when triggered manually.
Here is the debug output of the commands
Regards,
Peter
[ 0.0] Examining the guest ...
libguestfs: trace: set_network true
libguestfs: trace: set_network = 0
libguestfs: trace: add_drive
2001 Mar 28
1
UTF-8 patch for Samba 2.0.7
See description in the attached patch.
-------------- next part --------------
This quick hack adds primitive support of UTF-8 as a server 'character
set' to Samba 2.0.7. All file, share and user names are stored on server
in UTF-8, and translated into client code page (not UCS2) on the fly.
Additionally, server string conversion is added. Tested with Chinese and
Russian Windows clients.
2007 Apr 13
2
R on Solaris 10 x64
Hi R Developers,
Greg is helping me with debugging R on Solaris 10 x64. Please let us
know if you have any thoughts or tips that can help us debug this.
Thanks,
David
************
Using default transfer plist
in vector_io: permuting
About to write
*** caught segfault ***
address e8554000, cause 'memory not mapped'
Traceback:
1: .External("do_hdf5save", call,
2015 Aug 20
0
FW: ERR_DS_DRA_SCHEMA_MISMATCH after join samba 4.2.1 to existing domain
> > Hi
>
> >
>
> > I have multi domain environment with root domain and subdomain.
> > Forest and domain level windows 2003 native.
>
> > Also forest prep and domain prep did for sccm 2007 ocs 2007 and
> > Exchange 2003.
>
> >
>
> > After join Samba to domain like ad dc I had some problem with
> > replication:
>
>
2014 Aug 08
2
[PATCH 1/2] Add type checking, support integers as value
Before this patch, Python would segfault once you pass a non-string key
or value to node_set_value. It was also not possible to set bytes on
Python 3 as Unicode was assumed (Python 2 was not affected by this).
This patch fixes recognition of bytes for Python 3, but in addition it
recognizes ints (includes 'long' in Python 2) for DWORD (LE + BE) and
QWORDs. For this purpose, a new field
1997 Feb 14
3
NLSPATH Stack Overwrite
Here are my preliminary tests:
5.2.18 is vulnerable (stock Redhat 3.0.3)
5.3.12 does not appear vulnerable (stock Redhat 4.0, I think)
Dave G.
<daveg@escape.com>
http://www.escape.com/~daveg
2015 May 12
1
FW: ERR_DS_DRA_SCHEMA_MISMATCH after join samba 4.2.1 to existing domain
Hi
I have multi domain environment with root domain and subdomain. Forest and domain level windows 2003 native.
Also forest prep and domain prep did for sccm 2007 ocs 2007 and Exchange 2003.
After join Samba to domain like ad dc I had some problem with replication:
#################################################
[root at dc03 ~]# samba-tool drs replicate dc02 dc03
1998 May 26
0
Re: Beware of dangerous enviroment (Re: Overflows in minicom)
On Sat, 23 May 1998, Torkil Zachariassen wrote:
> >I have browsed various versions of libc and found a handful of weak points
> >where the value of an enviroment variable is trusted more than necessary.
>
[1]
> Could you explain to programming novices on linux-security - people like
> myself 8) - hwo this could affect security on a firewall (proxy and/or
> IP-router,
2000 Sep 27
0
FreeBSD Security Advisory: FreeBSD-SA-00:53.catopen
-----BEGIN PGP SIGNED MESSAGE-----
=============================================================================
FreeBSD-SA-00:53 Security Advisory
FreeBSD, Inc.
Topic: catopen() may pose security risk for third party code
Category: core
Module: libc
Announced:
2018 Mar 14
0
truncation/rounding bug with write.csv
My apologies for not including sessionInfo(), and I'm a bit angry at myself
for that. Retrying in a fresh session of R, I get different results. More
specifically, I get the expected result where accuracy is the same in the
first and the last line. As I didn't include my sessionInfo() in my
previous mail, I can't figure out why I now have a different result. So I'm
positive
1998 May 19
1
Beware of dangerous enviroment (Re: Overflows in minicom)
On Tue, 12 May 1998, Andi Kleen wrote on BUGTRAQ:
> I assumed the libc would ignore NLSPATH when the app runs suid (similar
> like it does with LD_LIBRARY_PATH etc.). If it doesn''t that is a bad bug.
>
> [... clickety click ... ]
>
> At least glibc 2.1 uses __secure_getenv() for NLSPATH. Don''t know about 2.0,
> separate GNU gettext, or libc5.
I have