]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 730fc35) | patch
CVE-2017-12895/ICMP: Check the availability of data before checksumming it.
authorGuy Harris <[email protected]>
Sat, 4 Feb 2017 04:02:45 +0000 (20:02 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit2b62d1dda41590db29368ec7ba5f4faf3464765a
tree04a869e08d8afa2b09066b589b65bf406601ba11tree
parent730fc35968c5433b9e2a829779057f4f9495dc51commit | diff
CVE-2017-12895/ICMP: Check the availability of data before checksumming it.

This fixes a buffer over-read discovered by Forcepoint's security
researchers Otto Airamo & Antti Levomäki.

Add tests using the capture files supplied by the reporter(s).
print-icmp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/icmp-cksum-oobr-1.out [new file with mode: 0644] blob
tests/icmp-cksum-oobr-1.pcap [new file with mode: 0644] blob
tests/icmp-cksum-oobr-2.out [new file with mode: 0644] blob
tests/icmp-cksum-oobr-2.pcap [new file with mode: 0644] blob
tests/icmp-cksum-oobr-3.out [new file with mode: 0644] blob
tests/icmp-cksum-oobr-3.pcap [new file with mode: 0644] blob
tests/icmp-cksum-oobr-4.out [new file with mode: 0644] blob
tests/icmp-cksum-oobr-4.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector