[PATCH] Do not leave random talloc magic in free()'ed memory, fix abort message

Volker Lendecke Volker.Lendecke at SerNet.DE
Wed Jan 17 07:30:14 UTC 2018


On Wed, Jan 17, 2018 at 07:23:59AM +1300, Andrew Bartlett via samba-technical wrote:
> Gary started to filter some untrusted strings when doing the auth audit
> work (the *new* messages get the usernames etc encoded if not ASCII)
> but what I'm saying is that every other DEBUG(0, ...), DEBUG(1, ...) et
> al that uses %s on untrusted user-supplied data is the same threat.

You're saying that printf("%s",untrusted); is unsafe? What's the
alternative? Along that line: How do we untaint data for Coverity?

Volker

-- 
Besuchen Sie die verinice.XP 2018 in Berlin,
Anwenderkonferenz für Informationssicherheit
vom 21.-23.03.2018 im Sofitel Kurfürstendamm
Info & Anmeldung hier: http://veriniceXP.org

SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
http://www.sernet.de, mailto:kontakt at sernet.de



More information about the samba-technical mailing list