1. 21 Jun, 2007 1 commit
  2. 19 Jun, 2007 2 commits
  3. 18 Jun, 2007 3 commits
  4. 15 Jun, 2007 1 commit
  5. 14 Jun, 2007 1 commit
  6. 13 Jun, 2007 1 commit
  7. 12 Jun, 2007 1 commit
    • cmiller@zippy.cornsilk.net's avatar
      Bug#28984: crasher on connect with out of range password length in \ · 4c9af559
      cmiller@zippy.cornsilk.net authored
      	protocol
      
      Fixed duplicated code, same as last commit.
      
      One could send a malformed packet that caused the server to SEGV.  In 
      recent versions of the password protocol, the client tells the server 
      what length the ciphertext is (almost always 20).  If that length was
      large enough to overflow a signed char, then the number would jump to 
      very large after being casted to unsigned int.
      
      Instead, cast the *passwd char to uchar.
      4c9af559
  8. 11 Jun, 2007 2 commits
  9. 08 Jun, 2007 2 commits
  10. 07 Jun, 2007 3 commits
  11. 06 Jun, 2007 6 commits
  12. 04 Jun, 2007 2 commits
  13. 01 Jun, 2007 4 commits
  14. 30 May, 2007 2 commits
  15. 23 May, 2007 3 commits
  16. 22 May, 2007 1 commit
  17. 21 May, 2007 2 commits
  18. 18 May, 2007 3 commits