Subject: Urgent help regarding the buffer overflow
To: None <netbsd-help@netbsd.org>
From: Vani V - CTD, Chennai. <vaniv@ctd.hcltech.com>
List: source-changes
Date: 10/29/2002 14:16:11
> Hello,
> There is a buffer overflow vulnerability reported(buffer length
> computation bug) in libresolv(in getanswer routine
which is solved recently.
> Can you please explain
> * Where actually the buffer length is not updated consistently.
> * Why are we introducing another pointer instead of updating the buffer
> length consistently?
> Please mail me immediately. Itz very urgent.
>
> Thanks,
> Vani.