]> The Tcpdump Group git mirrors - tcpdump/commit
CVE-2017-13020/VTP: Add some missing bounds checks.
authorGuy Harris <[email protected]>
Wed, 22 Mar 2017 05:02:41 +0000 (22:02 -0700)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commitc5dd7bef5e54da5996dc4713284aa6266ae75b75
treef62e131da907d24ba3f4ad6a8bb0cd62e20a0802
parent4601c685e7fd19c3724d5e499c69b8d3ec49933e
CVE-2017-13020/VTP: Add some missing bounds checks.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.
print-vtp.c
tests/TESTLIST
tests/vtp_asan.out [new file with mode: 0644]
tests/vtp_asan.pcap [new file with mode: 0644]