]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 777edc5) | patch
CVE-2017-12999/IS-IS: Add a missing length check.
authorGuy Harris <[email protected]>
Mon, 13 Feb 2017 18:26:49 +0000 (10:26 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit3b32029db354cbc875127869d9b12a9addc75b50
tree06db918904ddbe783c9325f4fe025615ba64562etree
parent777edc563aacdaff66a0b829cecd2ccb09a10404commit | diff
CVE-2017-12999/IS-IS: Add a missing length check.

This fixes a buffer over-read discovered by Forcepoint's security
researchers Otto Airamo & Antti Levomäki.

Add tests using the capture files supplied by the reporter(s).
print-isoclns.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/isis-areaaddr-oobr-1.out [new file with mode: 0644] blob
tests/isis-areaaddr-oobr-1.pcap [new file with mode: 0644] blob
tests/isis-areaaddr-oobr-2.out [new file with mode: 0644] blob
tests/isis-areaaddr-oobr-2.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector