]> The Tcpdump Group git mirrors - tcpdump/commit
CVE-2017-13022/IP: Add bounds checks to ip_printroute().
authorGuy Harris <[email protected]>
Wed, 22 Mar 2017 06:07:17 +0000 (23:07 -0700)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commitd1abf3211b7f4251c62c893b28300595eba1f974
tree6c1eaba1503997a1cf0443fcea6014ff2f1907b7
parent9b951de519d6ba076833584b0c0c606044b60f91
CVE-2017-13022/IP: Add bounds checks to ip_printroute().

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.
print-ip.c
tests/TESTLIST
tests/ip_printroute_asan.out [new file with mode: 0644]
tests/ip_printroute_asan.pcap [new file with mode: 0644]