]> The Tcpdump Group git mirrors - tcpdump/commit
CVE-2017-5485/Fix lookup_nsap() to match what isonsap_string() expects.
authorGuy Harris <[email protected]>
Sat, 14 Jan 2017 03:38:41 +0000 (19:38 -0800)
committerFrancois-Xavier Le Bail <[email protected]>
Wed, 18 Jan 2017 08:16:42 +0000 (09:16 +0100)
commit2817174698bcd5371ff7fbc9d50b5241dd0130bd
treee47f95ac1b7bd7551c5e660bdfa99b35e6186ca5
parentb553848e3e2c0c466f65ab14e253af91467e561a
CVE-2017-5485/Fix lookup_nsap() to match what isonsap_string() expects.

Change cddcb5632decb3fc631407b2ce0e526d17bb8ff9 changed isonsap_string()
to take, as arguments, a pointer to the first octet of an NSAP and the
length of the NSAP, rather than a pointer to a string of octets the
first octet of which is the NSAP length and the subsequent octets are
the octets of the NSAP.

However, lookup_nsap() was not changed in a similar fashion, and
isonsap_string() handed it a pointer to the first octet of the NSAP,
which lookup_nsap() treated as the NSAP length.

This should fix GitHub issue #563.
addrtoname.c