Bugtraq mailing list archives

Re: [RHSA-1999:030-01] Buffer overflow in cron daemon

From: okir () MONAD SWB DE (Olaf Kirch)
Date: Thu, 26 Aug 1999 10:05:34 +0200


On Wed, Aug 25, 1999 at 09:17:20PM -0400, Bill Nottingham wrote:

A buffer overflow exists in crond, the cron daemon. This
could allow local users to gain privilege.


FYI, Caldera OpenLinux isn't vulnerable to this.
This problem was first discovered two years ago by someone at Debian.

Olaf

--
Olaf Kirch         |  --- o --- Nous sommes du soleil we love when we play
okir () monad swb de  |    / | \   sol.dhoop.naytheet.ah kin.ir.samse.qurax
okir () caldera de    +-------------------- Why Not?! -----------------------
         UNIX, n.: Spanish manufacturer of fire extinguishers.

Current thread:

[RHSA-1999:030-01] Buffer overflow in cron daemon Bill Nottingham (Aug 25)
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Michal Zalewski (Jul 04)
  - Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Todd C. Miller (Aug 28)
  - Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Kurt Seifried (Aug 29)
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Olaf Kirch (Aug 26)
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Sam Carter (Aug 27)
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Adam Morrison (Aug 29)
- <Possible follow-ups>
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Todd C. Miller (Aug 28)