Erik Auerswald <auers...@unix-ag.uni-kl.de> writes: >> A NULL Pointer Dereference was discovered in setcmd () at >> commands.c:1152. The vulnerability causes a segmentation fault and >> application crash. ... > The attached patch "inetutils-telnet-set_null_deref_fix.patch" fixes this > by rejecting a set argument with neither ct->handler nor ct->charp.
Wonderful, thanks again for report and patch! https://git.savannah.gnu.org/gitweb/?p=inetutils.git;a=commitdiff;h=43ee2f01919cd1d0ecd8c1596d075aa8a54804d5 https://git.savannah.gnu.org/gitweb/?p=inetutils.git;a=commitdiff;h=9b4972fc95e741d94f9f0647bc9ff8b99bc445e0 /Simon
signature.asc
Description: PGP signature