Re: Can anyone verify a core dump on /sbin/mingetty - FOLLOW UP - Getty also dumping core

From: Jeffrey Denton (dentonj@c2i2.com)
Date: 12/04/01


Date: Mon, 3 Dec 2001 17:55:07 -0700 (MST)
From: Jeffrey Denton <dentonj@c2i2.com>
To: Bill Weiss <houdini@nmt.edu>

On Tue, 4 Dec 2001, Bill Weiss wrote:

> > Red-Hat 6.0 onwards (not tested any before) upto and including 7.2
> > Mandrake 8.0 2.4.3-20mdksmp (presumably similar to redhat here)
> > turbolinux 6.0
> > SCO unix 5.0.5
> >
> > (this information was quickly gathered by several people; thanks everyone)
>
> Slackware 7.0 (maybe 8.0) uses agetty, which is not vunerable, as far as I can tell.
> It just spits out a usage error.

Slackware 8.0 is not vulnerable.

# locate getty | grep bin
/sbin/agetty

# /sbin/agetty `perl -e 'print "A"x90000'`
Usage: /sbin/agetty [-hiLmw] [-l login_program] [-t timeout] [-I initstring] [-H
login_host] baud_rate,... line [termtype]
or [-hiLmw] [-l login_program] [-t timeout] [-I initstring] [-H login_host]
line baud_rate,... [termtype]

# cat /etc/slackware-version
8.0.0 (tta)

dentonj