]> The Tcpdump Group git mirrors - tcpdump/commit
CVE-2017-13000/IEEE 802.15.4: Fix bug introduced two fixes prior.
authorGuy Harris <[email protected]>
Tue, 21 Feb 2017 22:10:15 +0000 (14:10 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit8512734883227c11568bb35da1d48b9f8466f43f
tree12cd2c5316d242024d6f31c9684e90082e7cef68
parenta7e5f58f402e6919ec444a57946bade7dfd6b184
CVE-2017-13000/IEEE 802.15.4: Fix bug introduced two fixes prior.

We've already advanced the pointer past the PAN ID, if present; it now
points to the address, so don't add 2 to it.

This fixes a buffer over-read discovered by Forcepoint's security
researchers Otto Airamo & Antti Levomäki.

Add a test using the capture file supplied by the reporter(s).
print-802_15_4.c
tests/802_15_4_beacon.out [new file with mode: 0644]
tests/802_15_4_beacon.pcap [new file with mode: 0644]
tests/TESTLIST