]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 18fb255) | patch
CVE-2017-13036/OSPFv3: Add a bounds check before fetching data
authorFrancois-Xavier Le Bail <[email protected]>
Thu, 23 Mar 2017 23:55:18 +0000 (00:55 +0100)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commit71d9d09c7ce0b7e5474d13036e7bf8131998b98d
tree59be1c83db9d0145d8950162625718238748f705tree
parent18fb255653bfba3353eba6b4581bca94074decd4commit | diff
CVE-2017-13036/OSPFv3: Add a bounds check before fetching data

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.
print-ospf6.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/ospf6_decode_v3_asan.out [new file with mode: 0644] blob
tests/ospf6_decode_v3_asan.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector