CVE-2017-13012/ICMP: Add a missing bounds check.

Check before fetching the length from the included packet's IPv4 header. This fixes a buffer over-read discovered by Bhargava Shastry, SecT/TU Berlin. Add a test using the capture file supplied by the reporter(s), modified so the capture file won't be rejected as an invalid capture.
author: Guy Harris <guy@alum.mit.edu> 2017-03-15 23:45:38 -0700
committer: Denis Ovsienko <denis@ovsienko.info> 2017-09-13 12:25:44 +0100
commit: 8509ef02eceb2bbb479cea10fe4a7ec6395f1a8b (patch)
tree: 7f42d9253d1d6bedb5cc55f8db33efe0dc3c994a /tests/extract_read2_asan.pcap
parent: 9f0730bee3eb65d07b49fd468bc2f269173352fe (diff)
download: tcpdump-8509ef02eceb2bbb479cea10fe4a7ec6395f1a8b.tar.gz
1 files changed, 0 insertions, 0 deletions
diff --git a/tests/extract_read2_asan.pcap b/tests/extract_read2_asan.pcap
new file mode 100644
index 00000000..d30ee16d
--- /dev/null
+++ b/tests/extract_read2_asan.pcap
author	Guy Harris <guy@alum.mit.edu>	2017-03-15 23:45:38 -0700
committer	Denis Ovsienko <denis@ovsienko.info>	2017-09-13 12:25:44 +0100
commit	8509ef02eceb2bbb479cea10fe4a7ec6395f1a8b (patch)
tree	7f42d9253d1d6bedb5cc55f8db33efe0dc3c994a /tests/extract_read2_asan.pcap
parent	9f0730bee3eb65d07b49fd468bc2f269173352fe (diff)
download	tcpdump-8509ef02eceb2bbb479cea10fe4a7ec6395f1a8b.tar.gz