zybadawg333 at zybadawg333 at
Tue Jan 16 22:49:30 UTC 2007

On Tue, 16 Jan 2007 23:21:22 +0100 Russ Allbery <rra at> 
>zybadawg333 at writes:
>> innd/cc.c:1810:    i = RECVorREAD(CCchan->fd, buff, bufflen) ;
>> lib/inndcomm.c:337:    i = RECVorREAD(ICCfd, buff, bufsiz);
>> lib/inndcomm.c:374:    i = RECVorREAD(ICCfd, buff, rlen);
>Why do you think those are buffer overflows?

bufflen/bufsiz/rlen can be larger than sizeof(buff).

-- z

Concerned about your privacy? Instantly send FREE secure email, no account required

Get the best prices on SSL certificates from Hushmail

More information about the inn-bugs mailing list