]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: d1abf32) | patch
CVE-2017-13023/IPv6 mobility: Add a bounds check before fetching data
authorFrancois-Xavier Le Bail <[email protected]>
Wed, 22 Mar 2017 15:08:25 +0000 (16:08 +0100)
committerDenis Ovsienko <[email protected]>
Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commite2a28a23cfa24aaa04b997af9e646f84b7b62b0c
tree2a2de236e0bc602056db1af28a48d9827fe245a5tree
parentd1abf3211b7f4251c62c893b28300595eba1f974commit | diff
CVE-2017-13023/IPv6 mobility: Add a bounds check before fetching data

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't cause 'tcpdump: pcap_loop: truncated dump file'
print-mobility.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/mobility_opt_asan.out [new file with mode: 0644] blob
tests/mobility_opt_asan.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector