summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorTheo de Raadt <deraadt@cvs.openbsd.org>1996-12-24 20:04:15 +0000
committerTheo de Raadt <deraadt@cvs.openbsd.org>1996-12-24 20:04:15 +0000
commit4b846f2f7254c6f5049614ed7c7855c814e04185 (patch)
tree60aa0c5fd4d90452421915ec08b5f5a0d9ea6178
parentae9975d771d1542b772deee070cd9fa4b4fbcb0e (diff)
indicate this mktemp is vulnerable to a DOS attack, however the impact is very low
-rw-r--r--bin/df/df.c5
1 files changed, 3 insertions, 2 deletions
diff --git a/bin/df/df.c b/bin/df/df.c
index 14ef2cf10c7..307fe8df0ec 100644
--- a/bin/df/df.c
+++ b/bin/df/df.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: df.c,v 1.6 1996/12/14 12:17:52 mickey Exp $ */
+/* $OpenBSD: df.c,v 1.7 1996/12/24 20:04:14 deraadt Exp $ */
/* $NetBSD: df.c,v 1.21.2.1 1995/11/01 00:06:11 jtc Exp $ */
/*
@@ -49,7 +49,7 @@ static char copyright[] =
#if 0
static char sccsid[] = "@(#)df.c 8.7 (Berkeley) 4/2/94";
#else
-static char rcsid[] = "$OpenBSD: df.c,v 1.6 1996/12/14 12:17:52 mickey Exp $";
+static char rcsid[] = "$OpenBSD: df.c,v 1.7 1996/12/24 20:04:14 deraadt Exp $";
#endif
#endif /* not lint */
@@ -135,6 +135,7 @@ main(argc, argv)
continue;
} else if (S_ISBLK(stbuf.st_mode)) {
if ((mntpt = getmntpt(*argv)) == 0) {
+ /* XXX can be DOS'd, not very important */
mntpt = mktemp(strdup("/tmp/df.XXXXXX"));
mdev.fspec = *argv;
if (mkdir(mntpt, DEFFILEMODE) != 0) {