Re: Latest patch for PPP
- From: Roman Kurakin <rik@xxxxxxx>
- Date: Fri, 25 Aug 2006 23:57:34 +0400
Frederic Praca:
Hello,If len<2 you just can't access (theoretically) p[1] cause in best case you have only p[0] (len=1)
in the latest security advisory for PPP, the patch deals with conditions
in a for loop. The correct line is :
for (rlen=0; len >= 2 && p[1] >= 2 && len >= p[1]; len-=p[1], p+=p[1]) {
Couldn't the condition be simpler like :
for (rlen=0; p[1] >= 2 && len >= p[1]; len-=p[1], p+=p[1]){
or do not have even p[0] (len=0). So from general point of view this is correct code.
rik
Or is there a hack I didn't understand ?
In this case, if p[1] is greater or equal than 2, if we ensure that len
= p[1], we don't have to test that it's greater or equal than 2, isn't
it ?
Fred
_______________________________________________
freebsd-hackers@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@xxxxxxxxxxx"
_______________________________________________
freebsd-hackers@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@xxxxxxxxxxx"
- References:
- Latest patch for PPP
- From: Frederic Praca
- Latest patch for PPP
- Prev by Date: Re: [PATCH] adding two new options to 'cp'
- Next by Date: fsync: giving up on dirty
- Previous by thread: Latest patch for PPP
- Next by thread: momentary system "pauses" when switching VTYs
- Index(es):
