projects / platform / upstream / tcpdump.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9eed4d1) | patch
CVE-2017-16808/AoE: Add a missing bounds check. 97/211897/3 submit/tizen/20190812.033456
authorSeonah Moon <seonah1.moon@samsung.com>
Mon, 12 Aug 2019 01:41:04 +0000 (10:41 +0900)
committerSeonah Moon <seonah1.moon@samsung.com>
Mon, 12 Aug 2019 01:49:30 +0000 (10:49 +0900)
commit39bf9a556d721ee33c9e534de77ecd99e8e5bd04
treecb1baa8f7f91c2abd45e7bc9953f2fe033e7e67btree | snapshot
parent9eed4d1d8fc6506c0c95614e4fed662fa69b21a6commit | diff
CVE-2017-16808/AoE: Add a missing bounds check.

In aoev1_reserve_print() check bounds before trying to print an Ethernet
address.

Updated from a Denis Ovsienko's fix.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

https://github.com/the-tcpdump-group/tcpdump/commit/28f610026d901660dd370862b62ec328727446a2?diff=split

Change-Id: I8d6cbde6e93809124a16fc94d3707ec64bf4417e
print-aoe.c diff | blob | history
Domain: Network & Connectivity / Common;