]> The Tcpdump Group git mirrors - tcpdump/commit
projects / tcpdump / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 69ead2a) | patch
CVE-2016-7974/Don't try to dissect something with other than 4 as the IP version.
authorGuy Harris <[email protected]>
Sat, 4 Jul 2015 02:08:59 +0000 (19:08 -0700)
committerFrancois-Xavier Le Bail <[email protected]>
Wed, 18 Jan 2017 08:16:37 +0000 (09:16 +0100)
commite8a77162825188bd31eb96c99dc8e4432a2c6531
treee8be7d508d09eadd2eadc398832d57073d3d0184tree
parent69ead2a09cf7d0666c6a7ac12e47fd9743242c61commit | diff
CVE-2016-7974/Don't try to dissect something with other than 4 as the IP version.

Bad Things could happen, e.g. the dissector we call thinking it's been
handed an IPv6 header when we haven't handed it anything that large.

Fixes a heap overflow found with American Fuzzy Lop by Hanno Böck.

Update some .out files to correspond to that change.
print-ip.c diff | blob | history
tests/TESTLIST diff | blob | history
tests/bad-ipv4-version-pgm-heapoverflow.out [new file with mode: 0644] blob
tests/bad-ipv4-version-pgm-heapoverflow.pcap [new file with mode: 0644] blob
tests/gre-heapoverflow-1.out diff | blob | history
tests/heap-overflow-2.out diff | blob | history
tests/kday1.out diff | blob | history
tests/kday3.out diff | blob | history
[mirror] the TCPdump network dissector