]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: bea2686) | patch
(for 4.9.3) CVE-2018-14463/VRRP: Add a missing bounds check
authorFrancois-Xavier Le Bail <[email protected]>
Sun, 8 Oct 2017 11:28:05 +0000 (13:28 +0200)
committerFrancois-Xavier Le Bail <[email protected]>
Sun, 18 Aug 2019 18:35:51 +0000 (20:35 +0200)
commit3de07c772166b7e8e8bb4b9d1d078f1d901b570b
tree5ad2618c2bd8888b0c6c704f3178ec0dfb26cc3ctree
parentbea2686c296b79609060a104cc139810785b0739commit | diff
(for 4.9.3) CVE-2018-14463/VRRP: Add a missing bounds check

In vrrp_print().

This fixes a buffer over-read discovered by Bhargava Shastry.

Add a test using the capture file supplied by the reporter(s).
print-vrrp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/vrrp-vrrp_print-oobr.out [new file with mode: 0644] blob
tests/vrrp-vrrp_print-oobr.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector