]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: f76e7fe) | patch
CVE-2017-12897/ISO CLNS: Use ND_TTEST() for the bounds checks in isoclns_print().
authorGuy Harris <[email protected]>
Fri, 3 Feb 2017 20:24:14 +0000 (12:24 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit1dcd10aceabbc03bf571ea32b892c522cbe923de
tree1e61e30743230d5c70faadb92c552e0636c04f39tree
parentf76e7feb41a4327d2b0978449bbdafe98d4a3771commit | diff
CVE-2017-12897/ISO CLNS: Use ND_TTEST() for the bounds checks in isoclns_print().

This fixes a buffer over-read discovered by Kamil Frankowicz.

Don't pass the remaining caplen - that's too hard to get right, and we
were getting it wrong in at least one case; just use ND_TTEST().

Add a test using the capture file supplied by the reporter(s).
15 files changed:
netdissect.h diff | blob | history
print-atm.c diff | blob | history
print-chdlc.c diff | blob | history
print-ether.c diff | blob | history
print-fr.c diff | blob | history
print-gre.c diff | blob | history
print-isoclns.c diff | blob | history
print-juniper.c diff | blob | history
print-llc.c diff | blob | history
print-mpls.c diff | blob | history
print-null.c diff | blob | history
print-ppp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/isoclns-oobr.out [new file with mode: 0644] blob
tests/isoclns-oobr.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector