]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 014a703) | patch
CVE-2017-12897/ISO CLNS: Use ND_TTEST() for the bounds checks in isoclns_print().
authorGuy Harris <[email protected]>
Fri, 3 Feb 2017 20:24:14 +0000 (12:24 -0800)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commit7dcbc13ce49fd180442107f2fa2b384606608186
tree6e6f8e88e5aa3b98e671cb4906af6a29a44f39a6tree
parent014a703fcba8fe83c57125076a3b4f23043c80f6commit | diff
CVE-2017-12897/ISO CLNS: Use ND_TTEST() for the bounds checks in isoclns_print().

This fixes a buffer over-read discovered by Kamil Frankowicz.

Don't pass the remaining caplen - that's too hard to get right, and we
were getting it wrong in at least one case; just use ND_TTEST().

Add a test using the capture file supplied by the reporter(s).
15 files changed:
netdissect.h diff | blob | history
print-atm.c diff | blob | history
print-chdlc.c diff | blob | history
print-ether.c diff | blob | history
print-fr.c diff | blob | history
print-gre.c diff | blob | history
print-isoclns.c diff | blob | history
print-juniper.c diff | blob | history
print-llc.c diff | blob | history
print-mpls.c diff | blob | history
print-null.c diff | blob | history
print-ppp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/isoclns-oobr.out [new file with mode: 0644] blob
tests/isoclns-oobr.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector