From nobody@FreeBSD.org  Fri Apr 20 02:02:22 2001
Return-Path: <nobody@FreeBSD.org>
Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id BA4B137B424
	for <freebsd-gnats-submit@FreeBSD.org>; Fri, 20 Apr 2001 02:02:21 -0700 (PDT)
	(envelope-from nobody@FreeBSD.org)
Received: (from nobody@localhost)
	by freefall.freebsd.org (8.11.1/8.11.1) id f3K92La71729;
	Fri, 20 Apr 2001 02:02:21 -0700 (PDT)
	(envelope-from nobody)
Message-Id: <200104200902.f3K92La71729@freefall.freebsd.org>
Date: Fri, 20 Apr 2001 02:02:21 -0700 (PDT)
From: paulchef@starwon.com.au
To: freebsd-gnats-submit@FreeBSD.org
Subject: glob() function bug in ftpd daemon: what is its status in v2.2.7 and v3.4
X-Send-Pr-Version: www-1.0

>Number:         26727
>Category:       misc
>Synopsis:       glob() function bug in ftpd daemon: what is its status in v2.2.7 and v3.4
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Apr 20 02:10:00 PDT 2001
>Closed-Date:    Fri Apr 20 15:53:23 PDT 2001
>Last-Modified:  Sat Apr 21 21:30:04 PDT 2001
>Originator:     Paul Cheffers
>Release:        v2.2.7 and v3.4
>Organization:
Starwon Enterprises
>Environment:
FreeBSD zeus.starwon.com.au 2.2.7-RELEASE FreeBSD 2.2.7-RELEASE #0: Mon Jul 31 1
1:25:57 WST 2000     louis@zeus.starwon.com.au:/usr/src/sys/compile/ZEUS  i386
zeus %
>Description:
COVERT labs at PGP security have found a bug in the glob function
for ftpd.  You have said this will be fixed in v4.2.  We are running
v2.2.7 and v3.4 very nicely here.  Is the glob() problem happening in those two versions.  I also believe from reading the notes that this is not a problem in the FTPD daemon but in the actual system glob() function.  Shame on you guys for not separating data and code into different segments like (excuse me) Windows does?

>How-To-Repeat:

>Fix:

>Release-Note:
>Audit-Trail:

From: "Sergey N. Voronkov" <serg@tmn.ru>
To: paulchef@starwon.com.au
Cc: freebsd-gnats-submit@FreeBSD.ORG
Subject: Re: misc/26727: glob() function bug in ftpd daemon: what is its status in v2.2.7 and v3.4
Date: Fri, 20 Apr 2001 16:05:48 +0600

 On Fri, Apr 20, 2001 at 02:02:21AM -0700, paulchef@starwon.com.au wrote:
 > FreeBSD zeus.starwon.com.au 2.2.7-RELEASE FreeBSD 2.2.7-RELEASE #0: Mon Jul 31 1
 > 1:25:57 WST 2000     louis@zeus.starwon.com.au:/usr/src/sys/compile/ZEUS  i386
 > zeus %
 > >Description:
 > COVERT labs at PGP security have found a bug in the glob function
 > for ftpd.  You have said this will be fixed in v4.2.  We are running
 > v2.2.7 and v3.4 very nicely here.  Is the glob() problem happening in 
 > those two versions.  I also believe from reading the notes that this 
 
 Sure.
 
 > is not a problem in the FTPD daemon but in the actual system glob() 
 > function.  Shame on you guys for not separating data and code into 
 > different segments like (excuse me) Windows does?
 > 
 
 Upgrade your systems to at least 3.5.1-STABLE or you can try to port this
 patch to your system by hand... if you like it. (If you see the page
 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/ you can find much more
 security holes related to your systems. So, please think twice before
 porting patches.)
 
 Serg N. Voronkov.
State-Changed-From-To: open->closed 
State-Changed-By: dd 
State-Changed-When: Fri Apr 20 15:53:23 PDT 2001 
State-Changed-Why:  
The PR database is for problem reports, not questions.  The latter 
belong on the freebsd-questions@freebsd.org mailing list. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=26727 

From: Kris Kennaway <kris@obsecurity.org>
To: paulchef@starwon.com.au
Cc: freebsd-gnats-submit@FreeBSD.ORG
Subject: Re: misc/26727: glob() function bug in ftpd daemon: what is its status in v2.2.7 and v3.4
Date: Sat, 21 Apr 2001 21:25:57 -0700

 --6sX45UoQRIJXqkqR
 Content-Type: text/plain; charset=us-ascii
 Content-Disposition: inline
 
 On Fri, Apr 20, 2001 at 02:02:21AM -0700, paulchef@starwon.com.au wrote:
 
 > glob() function.  Shame on you guys for not separating data and code
 > into different segments like (excuse me) Windows does?
 
 What on earth does this have to do with data and code segments?  I
 don't think you know what you're talking about.
 
 Kris
 
 --6sX45UoQRIJXqkqR
 Content-Type: application/pgp-signature
 Content-Disposition: inline
 
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1.0.4 (FreeBSD)
 Comment: For info see http://www.gnupg.org
 
 iD8DBQE64l1UWry0BWjoQKURAh4eAKC8pz9Ff0PQWWyuvzQb3Ih7D2PYiwCaAq48
 6gv9oEIaSURWYdk3ALZSe24=
 =z6U1
 -----END PGP SIGNATURE-----
 
 --6sX45UoQRIJXqkqR--
>Unformatted:
