| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Add a sanity check on packet header length | Francois-Xavier Le Bail | 2018-02-07 | 1 | -0/+0 |
| | | | | | | | | | | | | | | | | | | | The packet length must be <= MAXIMUM_SNAPLEN. Currently, there is no D-Bus printer, thus no need for a bigger length. Now a pachet is valid if: capture length != 0, packet length != 0, capture length <= MAXIMUM_SNAPLEN, packet length <= MAXIMUM_SNAPLEN, packet length >= capture length. Moreover: Fix the packet header lengths of some fuzzed pcap files: If the lengths are > MAXIMUM_SNAPLEN, set them to MAXIMUM_SNAPLEN. Thus they will be always usable with this new sanity check. | ||||
| * | CVE-2017-13030/PIM: Redo bounds checks and add length checks. | Guy Harris | 2017-09-13 | 1 | -0/+0 |
| Use ND_TCHECK macros to do bounds checking, and add length checks before the bounds checks. Add a bounds check that the review process found was missing. This fixes a buffer over-read discovered by Bhargava Shastry, SecT/TU Berlin. Add a test using the capture file supplied by the reporter(s), modified so the capture file won't be rejected as an invalid capture. Update one test output file to reflect the changes. | |||||
 |
index : delta/tcpdump.git | |
| github.com: the-tcpdump-group/tcpdump.git |
| summaryrefslogtreecommitdiff |