]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 1a1bce0) | patch
(for 4.9.3) CVE-2018-14465/RSVP: Add a missing bounds check
authorFrancois-Xavier Le Bail <[email protected]>
Sun, 8 Oct 2017 11:19:12 +0000 (13:19 +0200)
committerFrancois-Xavier Le Bail <[email protected]>
Sun, 18 Aug 2019 18:35:51 +0000 (20:35 +0200)
commitbea2686c296b79609060a104cc139810785b0739
treefc495c7c3bd54819001e9219d19ad54ffcbece1btree
parent1a1bce0526a77b62e41531b00f8bb5e21fd4f3a3commit | diff
(for 4.9.3) CVE-2018-14465/RSVP: Add a missing bounds check

In rsvp_obj_print().

This fixes a buffer over-read discovered by Bhargava Shastry.

Add a test using the capture file supplied by the reporter(s).
print-rsvp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/rsvp-rsvp_obj_print-oobr.out [new file with mode: 0644] blob
tests/rsvp-rsvp_obj_print-oobr.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector