diff options
author | Max Rees <maxcrees@me.com> | 2019-08-04 01:46:22 -0500 |
---|---|---|
committer | Max Rees <maxcrees@me.com> | 2019-08-04 01:46:22 -0500 |
commit | aa1a18ae17509f67feccf03066c61f3266a44ece (patch) | |
tree | 8b15064b83fdfdf33966446c712b53212047a242 /user/tcpdump/CVE-2017-16808.patch | |
parent | d5ebb97710f39f4b5422f553ae60a9457a664f7e (diff) | |
download | packages-aa1a18ae17509f67feccf03066c61f3266a44ece.tar.gz packages-aa1a18ae17509f67feccf03066c61f3266a44ece.tar.bz2 packages-aa1a18ae17509f67feccf03066c61f3266a44ece.tar.xz packages-aa1a18ae17509f67feccf03066c61f3266a44ece.zip |
user/tcpdump: patch for CVE-2017-16808 (#149)
Diffstat (limited to 'user/tcpdump/CVE-2017-16808.patch')
-rw-r--r-- | user/tcpdump/CVE-2017-16808.patch | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/user/tcpdump/CVE-2017-16808.patch b/user/tcpdump/CVE-2017-16808.patch new file mode 100644 index 000000000..6b41aad8c --- /dev/null +++ b/user/tcpdump/CVE-2017-16808.patch @@ -0,0 +1,26 @@ +From 28f610026d901660dd370862b62ec328727446a2 Mon Sep 17 00:00:00 2001 +From: Denis Ovsienko <denis@ovsienko.info> +Date: Thu, 31 Aug 2017 21:15:37 +0100 +Subject: [PATCH] CVE-2017-16808/AoE: Add a missing bounds check. + +In aoev1_reserve_print() check bounds before trying to print an Ethernet +address. + +This fixes a buffer over-read discovered by Bhargava Shastry, +SecT/TU Berlin. +--- + print-aoe.c | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/print-aoe.c b/print-aoe.c +index 97e93df2e..2c78a55d3 100644 +--- a/print-aoe.c ++++ b/print-aoe.c +@@ -325,6 +325,7 @@ aoev1_reserve_print(netdissect_options *ndo, + goto invalid; + /* addresses */ + for (i = 0; i < nmacs; i++) { ++ ND_TCHECK2(*cp, ETHER_ADDR_LEN); + ND_PRINT((ndo, "\n\tEthernet Address %u: %s", i, etheraddr_string(ndo, cp))); + cp += ETHER_ADDR_LEN; + } |