CVE-2017-13030/PIM: Redo bounds checks and add length checks.

Use ND_TCHECK macros to do bounds checking, and add length checks before the bounds checks. Add a bounds check that the review process found was missing. This fixes a buffer over-read discovered by Bhargava Shastry, SecT/TU Berlin. Add a test using the capture file supplied by the reporter(s), modified so the capture file won't be rejected as an invalid capture. Update one test output file to reflect the changes.
author: Guy Harris <guy@alum.mit.edu> 2017-03-22 14:09:28 -0700
committer: Denis Ovsienko <denis@ovsienko.info> 2017-09-13 12:25:44 +0100
commit: 5dc1860d8267b1e0cb78c9ffa2a40bea2fdb3ddc (patch)
tree: 61c4957fb95780b4e54532dc0b04d9c18ea2c46c /tests/pim_header_asan.pcap
parent: 7029d15f148ef24bb7c6668bc640f5470d085e5a (diff)
download: tcpdump-5dc1860d8267b1e0cb78c9ffa2a40bea2fdb3ddc.tar.gz
1 files changed, 0 insertions, 0 deletions
diff --git a/tests/pim_header_asan.pcap b/tests/pim_header_asan.pcap
new file mode 100644
index 00000000..12f81bed
--- /dev/null
+++ b/tests/pim_header_asan.pcap
author	Guy Harris <guy@alum.mit.edu>	2017-03-22 14:09:28 -0700
committer	Denis Ovsienko <denis@ovsienko.info>	2017-09-13 12:25:44 +0100
commit	5dc1860d8267b1e0cb78c9ffa2a40bea2fdb3ddc (patch)
tree	61c4957fb95780b4e54532dc0b04d9c18ea2c46c /tests/pim_header_asan.pcap
parent	7029d15f148ef24bb7c6668bc640f5470d085e5a (diff)
download	tcpdump-5dc1860d8267b1e0cb78c9ffa2a40bea2fdb3ddc.tar.gz