From dds@istlab.dmst.aueb.gr  Mon Jan 17 21:29:13 2005
Return-Path: <dds@istlab.dmst.aueb.gr>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B584816A4CE
	for <FreeBSD-gnats-submit@freebsd.org>; Mon, 17 Jan 2005 21:29:13 +0000 (GMT)
Received: from istlab.dmst.aueb.gr (istlab.dmst.aueb.gr [195.251.249.147])
	by mx1.FreeBSD.org (Postfix) with ESMTP id ED9F643D49
	for <FreeBSD-gnats-submit@freebsd.org>; Mon, 17 Jan 2005 21:29:12 +0000 (GMT)
	(envelope-from dds@istlab.dmst.aueb.gr)
Received: from istlab.dmst.aueb.gr (localhost [127.0.0.1])
	by istlab.dmst.aueb.gr (8.13.1/8.13.1) with ESMTP id j0HLTB6f040549
	for <FreeBSD-gnats-submit@freebsd.org>; Mon, 17 Jan 2005 23:29:11 +0200 (EET)
	(envelope-from dds@istlab.dmst.aueb.gr)
Received: (from dds@localhost)
	by istlab.dmst.aueb.gr (8.13.1/8.13.1/Submit) id j0HLTBhX040548;
	Mon, 17 Jan 2005 23:29:11 +0200 (EET)
	(envelope-from dds)
Message-Id: <200501172129.j0HLTBhX040548@istlab.dmst.aueb.gr>
Date: Mon, 17 Jan 2005 23:29:11 +0200 (EET)
From: Diomidis Spinellis <dds@aueb.gr>
Reply-To: Diomidis Spinellis <dds@aueb.gr>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: bdes(1) does not hide its arguments
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         76374
>Category:       bin
>Synopsis:       bdes(1) does not hide its arguments
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    dds
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Jan 17 21:30:19 GMT 2005
>Closed-Date:    Sun Feb 13 15:23:40 GMT 2005
>Last-Modified:  Sun Feb 13 15:23:40 GMT 2005
>Originator:     Diomidis Spinellis
>Release:        FreeBSD 4.10-STABLE i386
>Organization:
AUEB
>Environment:
System: FreeBSD istlab.dmst.aueb.gr 4.10-STABLE FreeBSD 4.10-STABLE #23: Fri Oct 8 15:53:45 EEST 2004 dds@istlab.dmst.aueb.gr:/usr/obj/usr/src/sys/ISTLAB i386


>Description:
	bdes.c tries to hide its arguments by overwriting argv[],
	but this feature apparently no longer works from RELENG_4 onwards.


>How-To-Repeat:
	bdes -k secret </dev/zero >/dev/null & ps xw
>Fix:

	Use setproctitle(3), instead of manually writing over argv[].
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->analyzed 
State-Changed-By: dds 
State-Changed-When: Mon Jan 17 21:40:55 GMT 2005 
State-Changed-Why:  
Submitter changing hat. 



Responsible-Changed-From-To: freebsd-bugs->dds 
Responsible-Changed-By: dds 
Responsible-Changed-When: Mon Jan 17 21:40:55 GMT 2005 
Responsible-Changed-Why:  
Submitted changing hat. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=76374 
State-Changed-From-To: analyzed->patched 
State-Changed-By: dds 
State-Changed-When: Mon Jan 17 22:00:59 GMT 2005 
State-Changed-Why:  
Revision  Changes    Path 
1.8       +2 -15     src/secure/usr.bin/bdes/bdes.c 


http://www.freebsd.org/cgi/query-pr.cgi?pr=76374 
State-Changed-From-To: patched->closed 
State-Changed-By: dds 
State-Changed-When: Sun Feb 13 15:23:11 GMT 2005 
State-Changed-Why:  
MFC fix to RELENG_$ and RELENG_5 

http://www.freebsd.org/cgi/query-pr.cgi?pr=76374 
>Unformatted:
