Jan. 31st, 2005

bwh: (Default)
I discovered a security flaw that I believe is present in various Unix/Linux programs due to the design of a particular API. In order to find out how widespread the problem is, I initially did a web search, but that didn't help much; I don't think much source code is visible to search engines. Then I manually downloaded and checked through a few key source packages such as interpreters and thankfully found them to be free from this flaw. Finally I resolved to scan the Debian source archive automatically. After a few hours' hacking with Python I have something that seems to work. However, the size of the archive is currently around 10 GB (not including contrib and non-free) and I have a 300 kbps connection to the Internet so this is going to saturate that connection for the next 4 days or so...

February 2011

S M T W T F S
  12345
6789101112
13141516171819
20212223 242526
2728     

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated Sep. 1st, 2025 01:05 pm
Powered by Dreamwidth Studios