[LWN Logo]

Date:         Thu, 26 Aug 1999 10:05:34 +0200
From:         Olaf Kirch <okir@MONAD.SWB.DE>
Subject:      Re: [RHSA-1999:030-01] Buffer overflow in cron daemon
To:           BUGTRAQ@SECURITYFOCUS.COM

On Wed, Aug 25, 1999 at 09:17:20PM -0400, Bill Nottingham wrote:
> A buffer overflow exists in crond, the cron daemon. This
> could allow local users to gain privilege.

FYI, Caldera OpenLinux isn't vulnerable to this.
This problem was first discovered two years ago by someone at Debian.

Olaf
--
Olaf Kirch         |  --- o --- Nous sommes du soleil we love when we play
okir@monad.swb.de  |    / | \   sol.dhoop.naytheet.ah kin.ir.samse.qurax
okir@caldera.de    +-------------------- Why Not?! -----------------------
         UNIX, n.: Spanish manufacturer of fire extinguishers.