CVE-2017-12999/IS-IS: Add a missing length check.

author Guy Harris <[email protected]>

Mon, 13 Feb 2017 18:26:49 +0000 (10:26 -0800)

committer Denis Ovsienko <[email protected]>

Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
author Guy Harris <[email protected]>
Mon, 13 Feb 2017 18:26:49 +0000 (10:26 -0800)
committer Denis Ovsienko <[email protected]>
Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
diff --git a/print-isoclns.c b/print-isoclns.c

index 95339a0adc0ca5d48a2847553fab33beefe8ce39..9d66d0f7bb047968333f108683408660007a790c 100644 (file)
--- a/print-isoclns.c
+++ b/print-isoclns.c
@@ -2532,6 +2532,7 @@ isis_print(netdissect_options *ndo,
             ND_TCHECK2(*tptr, 1);
             alen = *tptr++;
             while (tmp && alen < tmp) {
+               N
author	Guy Harris <[email protected]>
	Mon, 13 Feb 2017 18:26:49 +0000 (10:26 -0800)
committer	Denis Ovsienko <[email protected]>
	Wed, 13 Sep 2017 11:25:44 +0000 (12:25 +0100)
print-isoclns.c		patch \| blob \| history
tests/TESTLIST		patch \| blob \| history
tests/isis-areaaddr-oobr-1.out	[new file with mode: 0644]	patch \| blob
tests/isis-areaaddr-oobr-1.pcap	[new file with mode: 0644]	patch \| blob
tests/isis-areaaddr-oobr-2.out	[new file with mode: 0644]	patch \| blob
tests/isis-areaaddr-oobr-2.pcap	[new file with mode: 0644]	patch \| blob