CVS update: samba/source
Jeremy Allison
jra at samba.anu.edu.au
Tue May 12 10:55:17 EST 1998
Date: Tuesday May 12, 1998 @ 10:55
Author: jra
Update of /data/cvs/samba/source
In directory samba:/tmp/cvs-serv3553
Modified Files:
charset.c chgpasswd.c client.c clientgen.c clientutil.c
clitar.c connection.c credentials.c dir.c genrand.c includes.h
ipc.c kanji.c ldap.c loadparm.c locking_shm.c locking_slow.c
make_printerdef.c make_smbcodepage.c mangle.c namequery.c
nmbd.c nmbd_become_lmb.c nmbd_browsesync.c
nmbd_incomingrequests.c nmbd_namelistdb.c nmbd_packets.c
nmbd_processlogon.c nmbd_serverlistdb.c nmbd_winsserver.c
nmblib.c nmblookup.c ntclient.c nterr.c password.c pcap.c
pidfile.c printing.c proto.h quotas.c reply.c server.c shmem.c
slprintf.c smb.h smberr.c smbmount.c smbpass.c smbpasswd.c
smbumount.c status.c testparm.c time.c torture.c trans2.c
util.c vt_mode.c
Log Message:
This is a security audit change of the main source.
It removed all ocurrences of the following functions :
sprintf
strcpy
strcat
The replacements are slprintf, safe_strcpy and safe_strcat.
It should not be possible to use code in Samba that uses
sprintf, strcpy or strcat, only the safe_equivalents.
Once Andrew has fixed the slprintf implementation then
this code will be moved back to the 1.9.18 code stream.
Jeremy.
More information about the samba-cvs
mailing list