Ticket History #2988: fix MITKRB5-SA-2005-001 telnet client vuln

# Tue Mar 29 16:21:18 2005 tlyu (Taylor Yu) - Ticket created

From:	tlyu@mit.edu
Subject:	CVS Commit

Download (untitled) / with headers
text/plain 373B

* telnet.c (slc_add_reply, slc_end_reply): Fix buffer overflow
vulnerability by checking lengths.
(env_opt_add): Ensure buffer allocation is sufficiently large,
accounting for expansion during IAC quoting.

To generate a diff of this commit:

cvs diff -r5.90 -r5.91 krb5/src/appl/telnet/telnet/ChangeLog
cvs diff -r5.18 -r5.19 krb5/src/appl/telnet/telnet/telnet.c

# Tue Mar 29 16:21:21 2005 tlyu (Taylor Yu) - Tags pullup added

# Tue Mar 29 16:21:22 2005 tlyu (Taylor Yu) - Version_reported 1.4 added

# Tue Mar 29 16:21:23 2005 tlyu (Taylor Yu) - Status changed from 'new' to 'resolved'

# Tue Mar 29 16:21:24 2005 tlyu (Taylor Yu) - Target_Version 1.4.1 added

# Tue Mar 29 16:21:24 2005 tlyu (Taylor Yu) - Requestor tlyu (Taylor Yu) added

# Tue Mar 29 16:21:25 2005 tlyu (Taylor Yu) - Component telnet added

# Tue Mar 29 16:24:48 2005 tlyu (Taylor Yu) - Version_Fixed 1.4.1 added

# Tue Mar 29 16:24:48 2005 tlyu (Taylor Yu) - Correspondence added

From:	tlyu@mit.edu
Subject:	CVS Commit

Download (untitled) / with headers
text/plain 190B

pullup from trunk

To generate a diff of this commit:

cvs diff -r5.90 -r5.90.6.1 krb5/src/appl/telnet/telnet/ChangeLog
cvs diff -r5.18 -r5.18.10.1 krb5/src/appl/telnet/telnet/telnet.c

# Wed Dec 16 18:02:44 2015 tlyu (Taylor Yu) - CustomField pullup deleted