summaryrefslogtreecommitdiffstats
path: root/package/tcpdump/0002-fix-CVE-2014-8767.patch
diff options
context:
space:
mode:
Diffstat (limited to 'package/tcpdump/0002-fix-CVE-2014-8767.patch')
-rw-r--r--package/tcpdump/0002-fix-CVE-2014-8767.patch20
1 files changed, 20 insertions, 0 deletions
diff --git a/package/tcpdump/0002-fix-CVE-2014-8767.patch b/package/tcpdump/0002-fix-CVE-2014-8767.patch
new file mode 100644
index 0000000000..a88efdf58d
--- /dev/null
+++ b/package/tcpdump/0002-fix-CVE-2014-8767.patch
@@ -0,0 +1,20 @@
+From https://bugzilla.redhat.com/show_bug.cgi?id=1165160
+
+Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
+
+--- tcpdump-tcpdump-4.6/print-olsr.c 2014-10-23 14:07:12.000000000 +0700
++++ tcpdump-4.6.2/print-olsr.c 2014-11-21 14:56:18.205542679 +0700
+@@ -234,6 +234,13 @@
+ ND_PRINT((ndo, "\n\t neighbor\n\t\t"));
+ neighbor = 1;
+
++ u_int caplength;
++
++ /* Checking length of available data before print */
++ caplength = (ndo->ndo_snapend >= msg_data) ? ndo->ndo_snapend - msg_data : 0;
++ if (hello_len > caplength)
++ hello_len = caplength;
++
+ while (hello_len >= sizeof(struct in_addr)) {
+
+ /* print 4 neighbors per line */
OpenPOWER on IntegriCloud