]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 4601c68) | patch
CVE-2017-13020/VTP: Add some missing bounds checks.
authorGuy Harris <[email protected]>
Wed, 22 Mar 2017 05:02:41 +0000 (22:02 -0700)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commitc5dd7bef5e54da5996dc4713284aa6266ae75b75
treef62e131da907d24ba3f4ad6a8bb0cd62e20a0802tree
parent4601c685e7fd19c3724d5e499c69b8d3ec49933ecommit | diff
CVE-2017-13020/VTP: Add some missing bounds checks.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.
print-vtp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/vtp_asan.out [new file with mode: 0644] blob
tests/vtp_asan.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector