The Tcpdump Group git mirrors

]> The Tcpdump Group git mirrors - tcpdump/commit

author	Guy Harris <[email protected]>
	Wed, 22 Mar 2017 21:09:28 +0000 (14:09 -0700)
committer	Denis Ovsienko <[email protected]>
	Sun, 3 Sep 2017 23:08:58 +0000 (00:08 +0100)
commit	f1ecee78e3cfcd87c077aee15bb12359cd16e3e0
tree	31e1a50e976556c97cbb90dbb401630eb6fc3795	tree
parent	35591264d7e5fa727fbed3b20ef427e1b648c1a2	commit \| diff

CVE-2017-13030/PIM: Redo bounds checks and add length checks.

Use ND_TCHECK macros to do bounds checking, and add length checks before
the bounds checks.

Add a bounds check that the review process found was missing.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't be rejected as an invalid capture.

Update one test output file to reflect the changes.

print-pim.c		diff \| blob \| history
tests/TESTLIST		diff \| blob \| history
tests/heapoverflow-in_checksum.out		diff \| blob \| history
tests/pim_header_asan.out	[new file with mode: 0644]	blob
tests/pim_header_asan.pcap	[new file with mode: 0644]	blob

[mirror] the TCPdump network dissector

RSS Atom