[src/netbsd-1-4]: src/libexec/ftpd Pull up revision 1.122 (requested by chris...

[he <he%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/c4f19a16de64
branches:  netbsd-1-4
changeset: 471280:c4f19a16de64
user:      he <he%NetBSD.org@localhost>
date:      Sun Apr 01 16:08:36 2001 +0000

description:
Pull up revision 1.122 (requested by christos):
  Fixes buffer overflow problems in glob(3).  Adds and uses GLOB_LIMIT
  to prevent denial of service attacks.

diffstat:

 libexec/ftpd/ftpd.c |  6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)

diffs (27 lines):

diff -r 6a2fe7e60351 -r c4f19a16de64 libexec/ftpd/ftpd.c
--- a/libexec/ftpd/ftpd.c       Sun Apr 01 16:08:21 2001 +0000
+++ b/libexec/ftpd/ftpd.c       Sun Apr 01 16:08:36 2001 +0000
@@ -1,4 +1,4 @@
-/*     $NetBSD: ftpd.c,v 1.61.2.4 2000/12/14 22:33:47 he Exp $ */
+/*     $NetBSD: ftpd.c,v 1.61.2.5 2001/04/01 16:08:36 he Exp $ */
 
 /*
  * Copyright (c) 1985, 1988, 1990, 1992, 1993, 1994
@@ -44,7 +44,7 @@
 #if 0
 static char sccsid[] = "@(#)ftpd.c     8.5 (Berkeley) 4/28/95";
 #else
-__RCSID("$NetBSD: ftpd.c,v 1.61.2.4 2000/12/14 22:33:47 he Exp $");
+__RCSID("$NetBSD: ftpd.c,v 1.61.2.5 2001/04/01 16:08:36 he Exp $");
 #endif
 #endif /* not lint */
 
@@ -1697,7 +1697,7 @@
 #endif
 
        if (strpbrk(whichf, "~{[*?") != NULL) {
-               int flags = GLOB_BRACE|GLOB_NOCHECK|GLOB_TILDE;
+               int flags = GLOB_BRACE|GLOB_NOCHECK|GLOB_TILDE|GLOB_LIMIT;
 
                memset(&gl, 0, sizeof(gl));
                freeglob = 1;