diff options
| author | Guy Harris <guy@alum.mit.edu> | 2017-02-03 15:34:18 -0800 |
|---|---|---|
| committer | Denis Ovsienko <denis@ovsienko.info> | 2017-07-22 23:57:42 +0100 |
| commit | d9e65de3d94698ec90dbca42962a30dd2f0680e1 (patch) | |
| tree | ff24265ba30eb3ed342af50641956c891a8323db /tests/stp-v4-length-sigsegv.pcap | |
| parent | 1bf91b1413a6d0eefb4c49bafdb612befa838556 (diff) | |
| download | tcpdump-d9e65de3d94698ec90dbca42962a30dd2f0680e1.tar.gz | |
CVE-2017-11108/Fix bounds checking for STP.
Check whether the flags are in the captured data before printing them in
an MSTP BPDU.
Check whether V4 length is in the captured data before fetching it.
This fixes a vulnerability discovered by Kamil Frankowicz.
Include a test for the "check whether the V4 length is..." fix, using
the capture supplied by Kamil Frankowicz.
Diffstat (limited to 'tests/stp-v4-length-sigsegv.pcap')
| -rw-r--r-- | tests/stp-v4-length-sigsegv.pcap | bin | 0 -> 324 bytes |
1 files changed, 0 insertions, 0 deletions
diff --git a/tests/stp-v4-length-sigsegv.pcap b/tests/stp-v4-length-sigsegv.pcap Binary files differnew file mode 100644 index 00000000..b6ae2ac1 --- /dev/null +++ b/tests/stp-v4-length-sigsegv.pcap |