Patch for remote root exploit mentioned at

<URL:http://www.skynet.ie/~airlied/pam_smb/>. This issue has CVE name CAN-2003-0686: <URL:http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0686>
author: Jacques Vidrine <nectar@FreeBSD.org> 2003-08-26 12:57:08 +0000
committer: Jacques Vidrine <nectar@FreeBSD.org> 2003-08-26 12:57:08 +0000
commit: 36be5194e92f7e22383c6ca4fb82fb1495d5472e (patch)
tree: d5321a2f3bf645074c3ef01b55c6ab98107bb37e /security/pam_smb/files
parent: Update to the latest snapshot available. (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/security/pam_smb/files/patch-smbval::smblib.c b/security/pam_smb/files/patch-smbval::smblib.c
new file mode 100644
index 000000000000..62ad5a129199
--- /dev/null
+++ b/security/pam_smb/files/patch-smbval::smblib.c
@@ -0,0 +1,19 @@
+*** smbval/smblib.c.orig	Sat Aug 16 09:42:32 2003
+--- smbval/smblib.c	Sat Aug 16 09:43:34 2003
+***************
+*** 338,344 ****
+  
+    }
+  
+!   strcpy(pword, PassWord);
+  #ifdef PAM_SMB_ENC_PASS
+    if (Con_Handle -> encrypt_passwords)
+    {
+--- 338,344 ----
+  
+    }
+  
+!   (void)strlcpy(pword, PassWord, sizeof(pword));
+  #ifdef PAM_SMB_ENC_PASS
+    if (Con_Handle -> encrypt_passwords)
+    {
author	Jacques Vidrine <nectar@FreeBSD.org>	2003-08-26 12:57:08 +0000
committer	Jacques Vidrine <nectar@FreeBSD.org>	2003-08-26 12:57:08 +0000
commit	36be5194e92f7e22383c6ca4fb82fb1495d5472e (patch)
tree	d5321a2f3bf645074c3ef01b55c6ab98107bb37e /security/pam_smb/files
parent	Update to the latest snapshot available. (diff)