]> The Tcpdump Group git mirrors - tcpdump/commit
CVE-2017-12987/IEEE 802.11: Fix processing of TIM IE.
authorGuy Harris <[email protected]>
Mon, 6 Feb 2017 19:24:42 +0000 (11:24 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commit99798bd9a41bd3d03fdc1e949810a38967f20ed3
tree3028a4b4e16a1b0157e416f4956b11f38e99bb40
parentd17507ffa3e9742199b02a66aa940e79ababfa30
CVE-2017-12987/IEEE 802.11: Fix processing of TIM IE.

The arguments to memcpy() were completely wrong.

This fixes a buffer over-read discovered by Kamil Frankowicz.

Add a test using the capture file supplied by Brian 'geeknik' Carpenter.
print-802_11.c
tests/TESTLIST
tests/ieee802.11_tim_ie_oobr.out [new file with mode: 0644]
tests/ieee802.11_tim_ie_oobr.pcap [new file with mode: 0644]