bin/64150: [PATCH] ls(1) coredumps when started via execve(2) with no argv.

Marc Bevand bevand_m at epita.fr
Fri Mar 12 11:29:56 PST 2004


On 12 Mar 2004, Ruslan Ermilov wrote:
| On Fri, Mar 12, 2004 at 11:07:25AM -0500, Tom Rhodes wrote:
| > 
| > Will it 'break' anything?
|
| Sure it will, the question is should we care about something that's
| already broken.  ;)

It will break almost all shellcodes trying to be the shorter ones
(as they pass NULL for argv and envp). So we can view it as a small
security improvement (just kidding).

-- 
Marc Bevand                          http://www.epita.fr/~bevand_m
Computer Science School EPITA - System, Network and Security Dept.


More information about the freebsd-security mailing list