Security fix:

``Buffer overflows exist in the FTP daemon included with MIT krb5.'' See <URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf.txt> and <URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf_122_patch.txt>. Obtained from: MIT Kerberos mailing list
author: Jacques Vidrine <nectar@FreeBSD.org> 2001-04-27 18:15:34 +0000
committer: Jacques Vidrine <nectar@FreeBSD.org> 2001-04-27 18:15:34 +0000
commit: 9168f72db8377bec00fa596728df8d1bdf9d3da2 (patch)
tree: 5049cd623554321c4c937c3c37cfa9607058aa9c /security/krb5-appl/files
parent: Security fix: (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/security/krb5-appl/files/patch-bd b/security/krb5-appl/files/patch-bd
new file mode 100644
index 000000000000..b2bf41284bb7
--- /dev/null
+++ b/security/krb5-appl/files/patch-bd
@@ -0,0 +1,19 @@
+--- appl/gssftp/ftpd/ftpcmd.y.ORIG	Wed Feb 28 16:06:45 2001
++++ appl/gssftp/ftpd/ftpcmd.y	Fri Apr 27 10:18:01 2001
+@@ -805,11 +805,13 @@
+ 		 * This is a valid reply in some cases but not in others.
+ 		 */
+ 		if (logged_in && $1 && strncmp((char *) $1, "~", 1) == 0) {
+-			*(char **)&($$) = *ftpglob((char *) $1);
+-			if (globerr != NULL) {
++			char **vv;
++			vv = ftpglob((char *) $1);
++			if (vv == NULL || globerr != NULL) {
+ 				reply(550, globerr);
+ 				$$ = NULL;
+-			}
++			} else
++				$$ = *vv;
+ 			free((char *) $1);
+ 		} else
+ 			$$ = $1;
author	Jacques Vidrine <nectar@FreeBSD.org>	2001-04-27 18:15:34 +0000
committer	Jacques Vidrine <nectar@FreeBSD.org>	2001-04-27 18:15:34 +0000
commit	9168f72db8377bec00fa596728df8d1bdf9d3da2 (patch)
tree	5049cd623554321c4c937c3c37cfa9607058aa9c /security/krb5-appl/files
parent	Security fix: (diff)