pidgin/nest

Fix the date on the 2023 Q3 state of the bird
default tip
3 weeks ago, Gary Kramlich
4a261d8e9db1
Fix the date on the 2023 Q3 state of the bird

Testing Done:
Eyeball tests.

Reviewed at https://reviews.imfreedom.org/r/2791/
---
title: cve-2004-0785-01
date: 2004-08-26T00:00:00.000Z
cveNumber: cve-2004-0785
summary: Local hostname resolution buffer overflow
discoveredBy: Sean (infamous42md)
fixedInRelease: 0.82
type: security
layout: cve
hidden: true
---
### Description
Buffer overflow. If the local computer's host name is not in /etc/hosts, and
the computer performs a DNS query to obtain its hostname when signing on to
zephyr, it could receive a reply with a hostname greater than `MAXHOSTNAMELEN`
(generally 64 bytes). If `gethostbyname()` does not ensure the size of
`hostent->h_name` is less than `MAXHOSTNAMELEN`, this value would be copied to
a buffer that is not large enough.
### Mitigation
The calls to copy the hostname were replaced with calls that check the length
of the destination buffer.