Zsh Mailing List Archive
Messages sorted by: Reverse Date, Date, Thread, Author

Re: buffer overflow on zsh-3.1.9



In the last episode (Aug 14), Jonel Rienton said:
> doesn't this constitute for a malicious user to bring down your
> system in a multi environment box?

No more than a "for(;;) malloc(1024);" loop or even /bin/sh's
"a=`yes`".  Although having zsh core dump is bad form (sh simply prints
"out of space").  Adjust your shell's resource limits if you're worried
about their memory usage.

-- 
	Dan Nelson
	dnelson@xxxxxxxxxxxx



Messages sorted by: Reverse Date, Date, Thread, Author