]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 86326e8) | patch
(for 4.9.3) CVE-2018-14467/BGP: Fix BGP_CAPCODE_MP.
authorFrancois-Xavier Le Bail <[email protected]>
Sun, 8 Oct 2017 11:38:50 +0000 (13:38 +0200)
committerFrancois-Xavier Le Bail <[email protected]>
Sun, 18 Aug 2019 18:35:51 +0000 (20:35 +0200)
commite3f3b445e2d20ac5d5b7fcb7559ce6beb55da0c9
tree54c8d76bc1a90525d356a00b2a9751fc68014774tree
parent86326e880d31b328a151d45348c35220baa9a1ffcommit | diff
(for 4.9.3) CVE-2018-14467/BGP: Fix BGP_CAPCODE_MP.

Add a bounds check and a comment to bgp_capabilities_print().

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s).
print-bgp.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/bgp-bgp_capabilities_print-oobr-2.out [new file with mode: 0644] blob
tests/bgp-bgp_capabilities_print-oobr-2.pcap [new file with mode: 0644] blob
[mirror] the TCPdump network dissector