Re: [PATCH 2/3] telnet: Fix TTYPE subnegotiation off-by-one error.

Thu, 07 Jul 2022 15:55:57 -0700 

Erik Auerswald <auers...@unix-ag.uni-kl.de> writes:

> Fix off-by-one error in Terminal-Type option subnegotiation if the TERM
> variable has exactly 44 bytes.  In this case the SE byte (end of
> subnegotiation parameters) was replaced by a NUL byte.  This concerns
> the CVE-2019-0053 fixes.  Reported by Erik Auerswald in
> <https://lists.gnu.org/archive/html/bug-inetutils/2022-02/msg00004.html>.

Thank you!

https://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=7aa677948c1d3f26c77f7a30f3c48d0a304595a0

/Simon

Attachment: signature.asc
Description: PGP signature

  • Re: Bug in ... Erik Auerswald
    • Re: Bu... Erik Auerswald
    • Re: Bu... Joerg Mayer
    • Re: Bu... Erik Auerswald
      • Re... Alfred M. Szmidt
        • ... Erik Auerswald
          • ... Erik Auerswald
            • ... Erik Auerswald
            • ... Erik Auerswald
            • ... Erik Auerswald
            • ... Simon Josefsson via Bug reports for the GNU Internet utilities
            • ... Erik Auerswald
            • ... Simon Josefsson via Bug reports for the GNU Internet utilities
            • ... Erik Auerswald
            • ... Simon Josefsson via Bug reports for the GNU Internet utilities
            • ... Erik Auerswald
            • ... Simon Josefsson via Bug reports for the GNU Internet utilities
            • ... Erik Auerswald
            • ... Erik Auerswald
            • ... Simon Josefsson via Bug reports for the GNU Internet utilities
            • ... Erik Auerswald

Reply via email to