From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.4.2) Gecko/20040308 Description of problem: nstat has a buffer overflow that should be fixed. nstat reads an environmental variable that's used to locate the /proc directory. If this variable is inherited in the environment, an attacker could point to a specially crafted proc entry to take advantage of the buffer overflow. I estimate this is low risk, but it must be taken care of. Version-Release number of selected component (if applicable): iproute-2.6.9-1 How reproducible: Didn't try Steps to Reproduce: 1. Found in a code review Additional info: I will attach a patch that addresses this. Its slightly modified version from Openwall Linux. Please keep the name the same to show proper attribution.
Created attachment 103485 [details] A patch that fixes the problem
Thx for patch, iproute-2.6.9-2 built