diff options
| author | Damien Miller <djm@mindrot.org> | 2006-03-26 14:22:47 +1100 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2006-03-26 14:22:47 +1100 |
| commit | 36812092ecb11a25ca9d6d87fdeaf53e371c5043 (patch) | |
| tree | 257ccc18998146f7f6e6c25cbb0ff9bd6de946a5 /ChangeLog | |
| parent | 07d86bec5eeaf19fe33dca99c8ebcbe9a77c3938 (diff) | |
- djm@cvs.openbsd.org 2006/03/25 01:13:23
[buffer.c channels.c deattack.c misc.c scp.c session.c sftp-client.c]
[sftp-server.c ssh-agent.c ssh-rsa.c xmalloc.c xmalloc.h auth-pam.c]
[uidswap.c]
change OpenSSH's xrealloc() function from being xrealloc(p, new_size)
to xrealloc(p, new_nmemb, new_itemsize).
realloc is particularly prone to integer overflows because it is
almost always allocating "n * size" bytes, so this is a far safer
API; ok deraadt@
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 12 |
1 files changed, 11 insertions, 1 deletions
| @@ -118,6 +118,16 @@ | |||
| 118 | to die | 118 | to die |
| 119 | 119 | ||
| 120 | feedback and ok deraadt@ | 120 | feedback and ok deraadt@ |
| 121 | - djm@cvs.openbsd.org 2006/03/25 01:13:23 | ||
| 122 | [buffer.c channels.c deattack.c misc.c scp.c session.c sftp-client.c] | ||
| 123 | [sftp-server.c ssh-agent.c ssh-rsa.c xmalloc.c xmalloc.h auth-pam.c] | ||
| 124 | [uidswap.c] | ||
| 125 | change OpenSSH's xrealloc() function from being xrealloc(p, new_size) | ||
| 126 | to xrealloc(p, new_nmemb, new_itemsize). | ||
| 127 | |||
| 128 | realloc is particularly prone to integer overflows because it is | ||
| 129 | almost always allocating "n * size" bytes, so this is a far safer | ||
| 130 | API; ok deraadt@ | ||
| 121 | 131 | ||
| 122 | 20060325 | 132 | 20060325 |
| 123 | - OpenBSD CVS Sync | 133 | - OpenBSD CVS Sync |
| @@ -4375,4 +4385,4 @@ | |||
| 4375 | - (djm) Trim deprecated options from INSTALL. Mention UsePAM | 4385 | - (djm) Trim deprecated options from INSTALL. Mention UsePAM |
| 4376 | - (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu | 4386 | - (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu |
| 4377 | 4387 | ||
| 4378 | $Id: ChangeLog,v 1.4273 2006/03/26 03:19:21 djm Exp $ | 4388 | $Id: ChangeLog,v 1.4274 2006/03/26 03:22:47 djm Exp $ |