]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 7a92344) | patch
CVE-2017-13002/AODV: Add some missing bounds checks.
authorGuy Harris <[email protected]>
Sun, 19 Feb 2017 22:19:32 +0000 (14:19 -0800)
committerDenis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
commitcbddb98484ea8ec1deece351abd56e063d775b38
treeb5270243cda42ed322ddcf746f3197c6eb6ab14btree
parent7a923447fd49a069a0fd3b6c3547438ab5ee2123commit | diff
CVE-2017-13002/AODV: Add some missing bounds checks.

In aodv_extension() do a bounds check on the extension header before we
look at it.

This fixes a buffer over-read discovered by Kamil Frankowicz.

Add a test using the capture file supplied by the reporter(s).

While we're at it, add the RFC number, and check the validity of the
length for the Hello extension.
print-aodv.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/hoobr_aodv_extension.out [new file with mode: 0644] blob
tests/hoobr_aodv_extension.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector