to do IDENT lookups and is logging to syslog. Bug discovered by CoKi,
<coki@nosystem.com.ar>, thanks a lot! [from HEAD.]
(http://www.nosystem.com.ar/advisories/advisory-11.txt)
+ngIRCd 0.8.x
+
+ - Fixed a bug that could case a root exploit when the daemon is compiled
+ to do IDENT lookups and is logging to syslog. Bug discovered by CoKi,
+ <coki@nosystem.com.ar>, thanks a lot!
+ (http://www.nosystem.com.ar/advisories/advisory-11.txt)
+
ngIRCd 0.8.2 (2005-01-26)
- Added doc/SSL.txt to distribution.
ngIRCd 0.8.2 (2005-01-26)
- Added doc/SSL.txt to distribution.
-$Id: ChangeLog,v 1.233.2.18 2005/02/03 09:20:58 alex Exp $
+$Id: ChangeLog,v 1.233.2.19 2005/02/03 09:27:09 alex Exp $
-static char UNUSED id[] = "$Id: log.c,v 1.44.2.3 2004/06/26 09:06:27 alex Exp $";
+static char UNUSED id[] = "$Id: log.c,v 1.44.2.4 2005/02/03 09:27:09 alex Exp $";
#include "imp.h"
#include <assert.h>
#include "imp.h"
#include <assert.h>
fflush( stdout );
}
#ifdef SYSLOG
fflush( stdout );
}
#ifdef SYSLOG
- else syslog( Level, msg );
+ else syslog( Level, "%s", msg );
#endif
} /* Log_Resolver */
#endif
} /* Log_Resolver */