Complete.Org: Mailing Lists: Archives: freeciv-dev: July 2000:
[Freeciv-Dev] Suggested patch to the worklist security hole (PR#484)

[Freeciv-Dev] Suggested patch to the worklist security hole (PR#484)

[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]

To:	freeciv-dev@xxxxxxxxxxx
Subject:	[Freeciv-Dev] Suggested patch to the worklist security hole (PR#484)
From:	Taneli Huuskonen <huuskone@xxxxxxxxxxxxxx>
Date:	Sat, 29 Jul 2000 12:19:08 +0300 (EET DST)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Last night I submitted a bug report to bugs@xxxxxxxxxxxxxxxxxxx, an
address I spotted in a source file, thinking the communication would be
private.  This morning I realized it wasn't.  I'm sorry for making a
security hole public before a patch was available.  However, I've
attached my own suggested fix for the bug.  It consists of two rather
trivial changes: adding a check for invalid index in
handle_player_worklist( ) and eliminating the strcpy( ) from
copy_worklist( ).

Taneli Huuskonen

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv

iQA/AwUBOYKbr1+t0CYLfLaVEQJNvgCdGjF3dqC8jeyFuN8u69wOu1tuqzsAmwZK
cWS196ziSIgFOq85aALVVrmY
=0jPb
-----END PGP SIGNATURE-----
-- 
I don't   | All messages will be PGP signed,  | Fight for your right to
speak for | encrypted mail preferred.  Keys:  | use sealed envelopes.
the Uni.  | http://www.helsinki.fi/~huuskone/ | http://www.gilc.org/

worklist.patch
Description: worklist.patch

[Prev in Thread]

Current Thread

[Next in Thread]

[Freeciv-Dev] Suggested patch to the worklist security hole (PR#484), Taneli Huuskonen <=

Prev by Date: [Freeciv-Dev] Re: [Freeciv] Re: Fascism patch
Next by Date: [Freeciv-Dev] A Java Freeciv Score log reader
Previous by thread: [Freeciv-Dev] patch: hash table improvements
Next by thread: [Freeciv-Dev] A Java Freeciv Score log reader
Index(es):
- Date
- Thread