Alan Coopersmith <[email protected]> writes: >https://sigma-star.at/blog/2025/12/unix-v4-buffer-overflow/ examines the >source code for su.c and shows that the buffer for password input is a simple >100 character array, but the loop to read password input has no boundary >checks and will happily keep writing long past the end of the buffer.
It's also being discussed over on the Metzdowd cryptography list, including people providing interesting historical perspectives. The thread starts here: https://www.metzdowd.com/pipermail/cryptography/2026-January/039215.html Not all messages are present in the archive yet. Peter.
