]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: c2f3b23) | patch
CVE-2017-13037/IP: Add bounds checks when printing time stamp options.
authorGuy Harris <[email protected]>
Sat, 25 Mar 2017 01:42:09 +0000 (18:42 -0700)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit2c2cfbd2b771ac888bc5c4a6d922f749d3822538
tree792c9f5f40709837c6c381c54700203d3ea891eetree
parentc2f3b23b022a6d1e809ab26f49f1ee45841d6056commit | diff
CVE-2017-13037/IP: Add bounds checks when printing time stamp options.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.
print-ip.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/ip_ts_opts_asan.out [new file with mode: 0644] blob
tests/ip_ts_opts_asan.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector