summaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-netkit/netkit-telnet/files
Commit message (Collapse)AuthorAgeFilesLines
* netkit-telnetd: Fix buffer overflow in netoprintfJulius Hemanth Pitti2020-07-291-0/+56
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | netoprintf() was not handling a case where return value of vsnprintf is greater than "size"(2nd argument), results in buffer overflow while adjusting "nfrontp" pointer to point beyond "netobuf" buffer. Here is one such case where "nfrontp" crossed boundaries of "netobuf", and pointing to another global variable. (gdb) p &netobuf[8255] $5 = 0x55c93afe8b1f <netobuf+8255> "" (gdb) p nfrontp $6 = 0x55c93afe8c20 <terminaltype> "\377" (gdb) p &terminaltype $7 = (char **) 0x55c93afe8c20 <terminaltype> (gdb) This resulted in crash of telnetd service with segmentation fault. Signed-off-by: Julius Hemanth Pitti <jpitti@cisco.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 232b82afd405c526f822294509e1d32388544ed4) [appears to be CVE-2020-10188] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-telnet: fix CVE-2020-10188Yi Zhao2020-04-251-0/+112
| | | | | | | | | | | Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-10188 Patch from Fedora: https://src.fedoraproject.org/rpms/telnet/raw/master/f/telnet-0.17-overflow-exploit.patch Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* telnetd: Fix deadlock on cleanupSeiichi Ishitsuka2018-06-121-0/+114
| | | | | | | | | The cleanup function in telnetd is called both directly and on SIGCHLD signals. This triggered a deadlock in glibc and was reproduced in glibc 2.27 while running on a 4.14.30 kernel. Signed-off-by: Seiichi Ishitsuka <ishitsuka.sc@ncos.nec.co.jp> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* netkit-telnet: Fix build with hardeningKhem Raj2017-09-081-0/+66
| | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netkit-telnet: support the cross-compileRoy Li2015-05-111-0/+48
| | | | | | | | when check the CC, only compile the object by CC, not run the object. MCONFIG file includes more configuration, we can not clear it Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* netkit-telnet: add new recipeLi xin2015-02-113-0/+1272
netkit-telnet includes the telnetd and client. telnetd: daemon for telnet protocol. telnet: client for telnet protocol. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-04 14:15:31 +0000