diff options
author | Max Rees <maxcrees@me.com> | 2019-10-02 23:34:03 -0500 |
---|---|---|
committer | Max Rees <maxcrees@me.com> | 2019-10-02 23:34:03 -0500 |
commit | f716c7057e137b586d2b8914346bdc5a486da397 (patch) | |
tree | 7e8d9dd98b0a546873f66b5e00556f87d66a0262 /user/tcpdump/CVE-2017-16808.patch | |
parent | 20e3621f523e3815a26ede1331a6493b70fcd939 (diff) | |
download | packages-f716c7057e137b586d2b8914346bdc5a486da397.tar.gz packages-f716c7057e137b586d2b8914346bdc5a486da397.tar.bz2 packages-f716c7057e137b586d2b8914346bdc5a486da397.tar.xz packages-f716c7057e137b586d2b8914346bdc5a486da397.zip |
user/tcpdump: [CVE] bump to 4.9.3
Diffstat (limited to 'user/tcpdump/CVE-2017-16808.patch')
-rw-r--r-- | user/tcpdump/CVE-2017-16808.patch | 26 |
1 files changed, 0 insertions, 26 deletions
diff --git a/user/tcpdump/CVE-2017-16808.patch b/user/tcpdump/CVE-2017-16808.patch deleted file mode 100644 index 6b41aad8c..000000000 --- a/user/tcpdump/CVE-2017-16808.patch +++ /dev/null @@ -1,26 +0,0 @@ -From 28f610026d901660dd370862b62ec328727446a2 Mon Sep 17 00:00:00 2001 -From: Denis Ovsienko <denis@ovsienko.info> -Date: Thu, 31 Aug 2017 21:15:37 +0100 -Subject: [PATCH] CVE-2017-16808/AoE: Add a missing bounds check. - -In aoev1_reserve_print() check bounds before trying to print an Ethernet -address. - -This fixes a buffer over-read discovered by Bhargava Shastry, -SecT/TU Berlin. ---- - print-aoe.c | 1 + - 1 file changed, 1 insertion(+) - -diff --git a/print-aoe.c b/print-aoe.c -index 97e93df2e..2c78a55d3 100644 ---- a/print-aoe.c -+++ b/print-aoe.c -@@ -325,6 +325,7 @@ aoev1_reserve_print(netdissect_options *ndo, - goto invalid; - /* addresses */ - for (i = 0; i < nmacs; i++) { -+ ND_TCHECK2(*cp, ETHER_ADDR_LEN); - ND_PRINT((ndo, "\n\tEthernet Address %u: %s", i, etheraddr_string(ndo, cp))); - cp += ETHER_ADDR_LEN; - } |