]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 3b37a65) | patch
CVE-2017-12991/BGP: Add missing bounds check.
authorGuy Harris <[email protected]>
Mon, 6 Feb 2017 20:14:38 +0000 (12:14 -0800)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commitba44b757d017e06d01df36c0def8c7ec34490036
treec92272f30f12a6525aba87e10a6ca275608e974ctree
parent3b37a65db5e9f44d0b6b3aff31e6c34795bbecd6commit | diff
CVE-2017-12991/BGP: Add missing bounds check.

This fixes a buffer over-read discovered by Forcepoint's security
researchers Otto Airamo & Antti Levomäki.

Add a test using the capture file supplied by the reporter(s).
print-bgp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/bgp-as-path-oobr.out [new file with mode: 0644] blob
tests/bgp-as-path-oobr.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector