From owner-doc-jp-work@jp.FreeBSD.org Wed Mar 13 04:11:58 2002
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6+3.4W/8.11.3) id g2CJBwf72610;
	Wed, 13 Mar 2002 04:11:58 +0900 (JST)
	(envelope-from owner-doc-jp-work@jp.FreeBSD.org)
Received: from mail4.nec.com (dns4.nec.com [131.241.15.4])
	by castle.jp.FreeBSD.org (8.11.6+3.4W/8.11.3) with ESMTP/inet id g2CJBwc72605
	for <doc-jp-work@jp.FreeBSD.org>; Wed, 13 Mar 2002 04:11:58 +0900 (JST)
	(envelope-from hino@ccrl.sj.nec.com)
Received: from netkeeper2.sj.nec.com (netkeeper2.sj.nec.com [131.241.31.10])
	by mail4.nec.com (/) with ESMTP id g2CJApe25640
	for <doc-jp-work@jp.FreeBSD.org>; Tue, 12 Mar 2002 11:10:52 -0800 (PST)
Received: from ccrl.sj.nec.com (localhost [127.0.0.1])
	by netkeeper2.sj.nec.com (8.9.1a/8.9.1) with ESMTP id LAA28773
	for <doc-jp-work@jp.FreeBSD.org>; Tue, 12 Mar 2002 11:10:45 -0800 (PST)
Received: from localhost (alfa [131.241.79.205])
	by ccrl.sj.nec.com (8.9.3/8.9.2) with ESMTP id LAA28450
	for <doc-jp-work@jp.FreeBSD.org>; Tue, 12 Mar 2002 11:10:46 -0800 (PST)
Date: Tue, 12 Mar 2002 11:10:46 -0800 (PST)
Message-Id: <20020312.111046.90831270.hino@ccrl.sj.nec.com>
To: doc-jp-work@jp.FreeBSD.org
From: Koji Hino <hino@ccrl.sj.nec.com>
In-Reply-To: <20020313.003451.41654937.hrs@eos.ocn.ne.jp>
References: <200203121427.g2CERps64246@freefall.freebsd.org>
	<20020313.003451.41654937.hrs@eos.ocn.ne.jp>
Organization: C&C Research Laboratories (CCRL), NEC USA, Inc.
X-Mailer: Mew version 2.2rc2 on Emacs 21.1 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
Reply-To: doc-jp-work@jp.FreeBSD.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+020312
X-Sequence: doc-jp-work 303
Subject: [doc-jp-work 303] Re: ANNOUNCE: FreeBSD Ports Security
 Advisory FreeBSD-SA-02:14.pam-pgsql
Errors-To: owner-doc-jp-work@jp.FreeBSD.org
Sender: owner-doc-jp-work@jp.FreeBSD.org
X-Originator: hino@ccrl.sj.nec.com

$B$$$D$b$46lO+MM$G$9!#$?$/$5$s(BSA$B=P$A$c$$$^$7$?$M!D(B

From: Hiroki Sato <hrs@eos.ocn.ne.jp>
 Subject: [doc-jp-work 302] Re: ANNOUNCE: FreeBSD Ports Security
Advisory FreeBSD-SA-02:14.pam-pgsql
 Date: Wed, 13 Mar 2002 00:34:51 +0900 (JST)

:> FreeBSD $B%;%-%e%j%F%#4+9p(B $BF|K\8lHG(B
:> =============================================================================
:> FreeBSD-SA-02:14 (2002-03-12)
:>  * pam-pgsql port authentication bypass
:> =============================================================================
<snip>

:> II.  $BLdBj$N>\:Y(B - Problem Description
:> 
:> passwords, and change user passwords.  The username and password given
:> by the user is inserted into the SQL statement without any quoting or
:> other safety checks.

:> $B<B9T$9$k(B SQL $BJ8$r@8@.$7$^$9!#$=$N:]!"%f!<%6$+$i;XDj$5$l$k%f!<%6L>$H(B
:> $B%Q%9%o!<%I$O!"%/%)!<%H=hM}$J$I$N0BA4@-$N%A%'%C%/$,$^$C$?$/(B
:> $B9T$J$o$l$J$$$^$^!"$=$N(B SQL $BJ8$KA^F~$5$l$^$9!#(B

$B!V%/%)!<%H=hM}!W"*!V0zMQ=hM}!W!"!V0zMQ=hM}(B ($BLuCm(B: SQL$B$NL?Na$rC1$J$kJ8(B
$B;zNs$KCV$-49$($kEy$N=hM}(B)$B!W(B

$B$3$l$b$&$^$$Lu8l$,$J$$$G$9$M!#F1MM$K(Bquoting$B$,LdBj$H$J$k%/%m%9%5%$%H%9(B
$B%/%j%W%F%#%s%04XO"$NJ8=q$GNI$$$N$,$J$$$+$H$A$g$C$HC5$7$F$_$^$7$?$,!"(B
IPA$B$N%5%$%H$K:\$C$F$$$k9bLZ$5$s$NJ8$J$I$G$b%(%9%1!<%W=hM}!"$H$J$C$F$^(B
$B$9!D(B

$B!t(B $B$7$+$7!"(BSQL$B%5!<%P$H$*OC$7$9$k$3$H$,A0Ds$N%W%m%0%i%`$G%f!<%6F~NO$r$=(B
$B!t(B $B$N$^$^EO$7$F$7$^$&$H$O!D(B

$BF|Ln(B
