]> The Tcpdump Group git mirrors - tcpdump/commitdiff
projects / tcpdump / commitdiff
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 20c9007)
Add three test cases for already fixed CVEs
authorFrancois-Xavier Le Bail <[email protected]>
Sat, 6 Feb 2016 13:49:56 +0000 (14:49 +0100)
committerFrancois-Xavier Le Bail <[email protected]>
Sat, 6 Feb 2016 14:26:14 +0000 (15:26 +0100)
CVEs by Steffen Bauch
CVE-2014-8767: OLSR
CVE-2014-8768: Geonet
CVE-2014-8769: AODV

tests/TESTLIST patch | blob | history
tests/cve-2014-8767-OLSR.out [new file with mode: 0644] patch | blob
tests/cve-2014-8767-OLSR.pcap [new file with mode: 0644] patch | blob
tests/cve-2014-8768-Geonet.out [new file with mode: 0644] patch | blob
tests/cve-2014-8768-Geonet.pcap [new file with mode: 0644] patch | blob
tests/cve-2014-8769-AODV.out [new file with mode: 0644] patch | blob
tests/cve-2014-8769-AODV.pcap [new file with mode: 0644] patch | blob

diff --git a/tests/TESTLIST b/tests/TESTLIST
index 325c30ffe8cf957d58a863fe2661d7bb39ff3157..a732040605631f97bfb3ed4b922f1deb0824dc04 100644 (file)
--- a/tests/TESTLIST
+++ b/tests/TESTLIST
@@ -291,6 +291,11 @@ medsa-e            medsa.pcap              medsa-e.out     -t -e
 # VXLAN tests
 vxlan  vxlan.pcap  vxlan.out  -# -t -e
 
+# CVEs 2014 malformed packets from Steffen Bauch
+cve-2014-8767-OLSR cve-2014-8767-OLSR.pcap cve-2014-8767-OLSR.out -t -v
+cve-2014-8768-Geonet cve-2014-8768-Geonet.pcap cve-2014-8768-Geonet.out -t -v
+cve-2014-8769-AODV cve-2014-8769-AODV.pcap cve-2014-8769-AODV.out -t -v
+
 # bad packets from Kevin Day
 # cve-2015-2155 -- futz testing on FORCES printer
 kday1           kday1.pcap              kday1.out       -t -v
diff --git a/tests/cve-2014-8767-OLSR.out b/tests/cve-2014-8767-OLSR.out
new file mode 100644 (file)
index 0000000..edfb067
--- /dev/null
+++ b/tests/cve-2014-8767-OLSR.out
@@ -0,0 +1,4 @@
+IP (tos 0x15,ECT(1), ttl 77, id 62335, offset 0, flags [DF], proto UDP (17), length 61, bad cksum 30c6 (->22af)!)
+    10.1.1.104.698 > 10.2.2.2.514: OLSRv4, seq 0x0202, length 33
+       TC Message (0x02), originator 2.2.2.2, ttl 2, hop 2
+         vtime 0.070s, msg-seq 0x0202, length 2 (invalid)
diff --git a/tests/cve-2014-8767-OLSR.pcap b/tests/cve-2014-8767-OLSR.pcap
new file mode 100644 (file)
index 0000000..67036ed
Binary files /dev/null and b/tests/cve-2014-8767-OLSR.pcap differ
diff --git a/tests/cve-2014-8768-Geonet.out b/tests/cve-2014-8768-Geonet.out
new file mode 100644 (file)
index 0000000..4b7182d
--- /dev/null
+++ b/tests/cve-2014-8768-Geonet.out
@@ -0,0 +1 @@
+GeoNet src:07:07:07:07:07:07; v:12 NH:6-Unknown HT:5-1-TopoScopeBcast-MH HopLim:7 Payload:1799 GN_ADDR:ef:06:07:35:97:00:24:8c lat:4521984 lon:1039368000 Malformed (small) 
diff --git a/tests/cve-2014-8768-Geonet.pcap b/tests/cve-2014-8768-Geonet.pcap
new file mode 100644 (file)
index 0000000..345ed24
Binary files /dev/null and b/tests/cve-2014-8768-Geonet.pcap differ
diff --git a/tests/cve-2014-8769-AODV.out b/tests/cve-2014-8769-AODV.out
new file mode 100644 (file)
index 0000000..0bb70b4
--- /dev/null
+++ b/tests/cve-2014-8769-AODV.out
@@ -0,0 +1,2 @@
+IP truncated-ip - 58880 bytes missing! (tos 0x0, ttl 64, id 62335, offset 0, flags [DF], proto UDP (17), length 58941, bad cksum 30c6 (->49c3)!)
+    10.1.1.104.654 > 10.2.2.2.3328:  aodv rerr  [items 0] [19192]:
diff --git a/tests/cve-2014-8769-AODV.pcap b/tests/cve-2014-8769-AODV.pcap
new file mode 100644 (file)
index 0000000..3cd1569
Binary files /dev/null and b/tests/cve-2014-8769-AODV.pcap differ
[mirror] the TCPdump network dissector