From: Sebastian Pipping <sebastian@pipping.org>
Date: Sat, 21 Jun 2008 00:14:19 +0000 (+0200)
Subject: Security flaws in FAPG 0.41 and related patches
X-Git-Tag: v0.42~2
X-Git-Url: http://royale.zerezo.com/git/?p=FAPG;a=commitdiff_plain;h=7bc9401a06cc6d62d53ac50139743599530f2dd8;hp=7bc9401a06cc6d62d53ac50139743599530f2dd8

Security flaws in FAPG 0.41 and related patches

Hello Antoine!

As part of a security course at university our group has
studied code of FAPG 0.38. With the help of Splint [1]
we were able to find two security flaws that are still
present in FAPG 0.41.

I have attached a patch to this mail for each flaw.
Would be cool if you could include these patches
in the next FAPG release.

Best regards,

Sebastian

[1] http://www.splint.org/

Signed-off-by: Antoine Jacquet <royale@zerezo.com>
---