Fixed a bug that could case a root exploit when the daemon is compiled

to do IDENT lookups and is logging to syslog. Bug discovered by CoKi, <coki@nosystem.com.ar>, thanks a lot! (http://www.nosystem.com.ar/advisories/advisory-11.txt)
2025-09-11 06:46:01 +00:00 · 2005-02-03 09:26:42 +00:00
parent 07fe19889b
commit 8308c170db
2 changed files with 8 additions and 4 deletions
--- a/8
+++ b/8
@@ -12,6 +12,10 @@

 ngIRCd CVSHEAD

+  - Fixed a bug that could case a root exploit when the daemon is compiled
+    to do IDENT lookups and is logging to syslog. Bug discovered by CoKi,
+    <coki@nosystem.com.ar>, thanks a lot!
+    (http://www.nosystem.com.ar/advisories/advisory-11.txt)
  - Code cleanups from Florian Westphal, <westphal@foo.fh-furtwangen.de>.
  - Raised the maximum length of passwords to 20 characters.
  - Fixed a memory leak when resizing the connection pool and realloc()
@@ -28,7 +32,7 @@ ngIRCd CVSHEAD
    should enable the system to write proper core files when not running with
    root privileges ...

-ngircd 0.8.2 (2005-01-26)
+ngIRCd 0.8.2 (2005-01-26)

  - Added doc/SSL.txt to distribution.
  - Fixed a buffer overflow that could cause the daemon to crash. Bug found
@@ -572,4 +576,4 @@ ngIRCd 0.0.1, 31.12.2001


 -- 
-$Id: ChangeLog,v 1.256 2005/02/03 09:11:43 alex Exp $
+$Id: ChangeLog,v 1.257 2005/02/03 09:26:42 alex Exp $