Signed/unsigned conversion bug in OpenBSD select() call

[EN] securityvulns.ru
no-pyccku

Signed/unsigned conversion bug in OpenBSD select() call
Published: 13.08.2002
Source: BUGTRAQ
SecurityVulns ID: 2225
Type: local
Level: 7/10
Description: By passing negative argument to select() function it's possible to overwrite the fragment of kernel memory.

Original document OPENBSD, OpenBSD Security Advisory: Select Boundary Condition (13.08.2002)

Discuss: Read or add your comments to this news (0 comments)