diff options
author | Francois-Xavier Le Bail <devel.fx.lebail@orange.fr> | 2017-03-22 17:07:47 +0100 |
---|---|---|
committer | Denis Ovsienko <denis@ovsienko.info> | 2017-09-13 12:25:44 +0100 |
commit | 5338aac7b8b880b0c5e0c15e27dadc44c5559284 (patch) | |
tree | 628002c5e06b40533dcc8839c5e957960d6926aa /extract.h | |
parent | 7d3aba9f06899d0128ef46e8a2fa143c6fad8f62 (diff) | |
download | tcpdump-5338aac7b8b880b0c5e0c15e27dadc44c5559284.tar.gz |
CVE-2017-13025/IPv6 mobility: Add a bounds check before fetching data
This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.
Add a test using the capture file supplied by the reporter(s), modified
so the capture file won't cause 'tcpdump: pcap_loop: truncated dump file'
Diffstat (limited to 'extract.h')
-rw-r--r-- | extract.h | 3 |
1 files changed, 3 insertions, 0 deletions
@@ -281,3 +281,6 @@ EXTRACT_64BITS(const void *p) #define ND_TTEST_64BITS(p) ND_TTEST2(*(p), 8) #define ND_TCHECK_64BITS(p) ND_TCHECK2(*(p), 8) + +#define ND_TTEST_128BITS(p) ND_TTEST2(*(p), 16) +#define ND_TCHECK_128BITS(p) ND_TCHECK2(*(p), 16) |