]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 2bba46e) | patch
CVE-2017-13017/DHCPv6: Add a missing option length check.
authorGuy Harris <[email protected]>
Wed, 22 Mar 2017 02:40:51 +0000 (19:40 -0700)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commit63c065b6e1198fdbe33786849069a7dcd0cd6ab9
tree3a5679c524684af1906191e8eeeb077c1ed8b21btree
parent2bba46eaae87cc1711e2a3f291bcc7f53e44a7c1commit | diff
CVE-2017-13017/DHCPv6: Add a missing option length check.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.
print-dhcp6.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/dhcp6_reconf_asan.out [new file with mode: 0644] blob
tests/dhcp6_reconf_asan.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector