| author | Sebastian Pipping <sebastian@pipping.org> | |
| Sat, 21 Jun 2008 00:14:19 +0000 (02:14 +0200) | ||
| committer | Antoine Jacquet <royale@zerezo.com> | |
| Wed, 30 Jul 2008 22:57:35 +0000 (00:57 +0200) | ||
| commit | 7bc9401a06cc6d62d53ac50139743599530f2dd8 | |
| tree | bd3f59836de0e466f205dbc021383560f0bf2072 | tree | snapshot |
| parent | 0c1e07e01c487f248ed61fd22fd2a85be49eae19 | commit | diff |
Security flaws in FAPG 0.41 and related patches
Hello Antoine!
As part of a security course at university our group has
studied code of FAPG 0.38. With the help of Splint [1]
we were able to find two security flaws that are still
present in FAPG 0.41.
I have attached a patch to this mail for each flaw.
Would be cool if you could include these patches
in the next FAPG release.
Best regards,
Sebastian
[1] http://www.splint.org/
Signed-off-by: Antoine Jacquet <royale@zerezo.com>
Hello Antoine!
As part of a security course at university our group has
studied code of FAPG 0.38. With the help of Splint [1]
we were able to find two security flaws that are still
present in FAPG 0.41.
I have attached a patch to this mail for each flaw.
Would be cool if you could include these patches
in the next FAPG release.
Best regards,
Sebastian
[1] http://www.splint.org/
Signed-off-by: Antoine Jacquet <royale@zerezo.com>
| fapg.c | diff | blob | history |