]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 99798bd) | patch
CVE-2017-12991/BGP: Add missing bounds check.
authorGuy Harris <[email protected]>
Mon, 6 Feb 2017 20:14:38 +0000 (12:14 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit50a44b6b8e4f7c127440dbd4239cf571945cc1e7
treed6c7c93e88a76fd55ec53c2f6bc5976506861dc3tree
parent99798bd9a41bd3d03fdc1e949810a38967f20ed3commit | diff
CVE-2017-12991/BGP: Add missing bounds check.

This fixes a buffer over-read discovered by Forcepoint's security
researchers Otto Airamo & Antti Levomäki.

Add a test using the capture file supplied by the reporter(s).
print-bgp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/bgp-as-path-oobr.out [new file with mode: 0644] blob
tests/bgp-as-path-oobr.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector