]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: e5ec0d6) | patch
(for 4.9.3) CVE-2018-14462/ICMP: Add a missing bounds check
authorFrancois-Xavier Le Bail <[email protected]>
Sun, 8 Oct 2017 10:06:56 +0000 (12:06 +0200)
committerFrancois-Xavier Le Bail <[email protected]>
Sun, 18 Aug 2019 18:35:51 +0000 (20:35 +0200)
commit1a1bce0526a77b62e41531b00f8bb5e21fd4f3a3
tree6e284597630f338d42fe84f53cca8c7e6540d964tree
parente5ec0d6b59b02423ef6a29544bca34b62745c180commit | diff
(for 4.9.3) CVE-2018-14462/ICMP: Add a missing bounds check

In icmp_print().

This fixes a buffer over-read discovered by Bhargava Shastry.

Add two tests using the capture files supplied by the reporter(s).
print-icmp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/icmp-icmp_print-oobr-1.out [new file with mode: 0644] blob
tests/icmp-icmp_print-oobr-1.pcap [new file with mode: 0644] blob
tests/icmp-icmp_print-oobr-2.out [new file with mode: 0644] blob
tests/icmp-icmp_print-oobr-2.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector