]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 1ffd794) | patch
CVE-2017-13000/IEEE 802.15.4: Fix bug introduced two fixes prior.
authorGuy Harris <[email protected]>
Tue, 21 Feb 2017 22:10:15 +0000 (14:10 -0800)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commit41df3b219070d05aac0eea0bbc8f48ff72dddff5
tree4338365d53f1eeb65d5836058b1ad65af4698c0atree
parent1ffd7948358ad5024e4f2a4e5ce19e475136ba78commit | diff
CVE-2017-13000/IEEE 802.15.4: Fix bug introduced two fixes prior.

We've already advanced the pointer past the PAN ID, if present; it now
points to the address, so don't add 2 to it.

This fixes a buffer over-read discovered by Forcepoint's security
researchers Otto Airamo & Antti Levomäki.

Add a test using the capture file supplied by the reporter(s).
print-802_15_4.c diff | blob | history
tests/802_15_4_beacon.out [new file with mode: 0644] blob
tests/802_15_4_beacon.pcap [new file with mode: 0644] blob
tests/TESTLIST diff | blob | history
[mirror] the TCPdump network dissector