summaryrefslogtreecommitdiffstats
path: root/package/tcpdump/0004-fix-CVE-2014-8769.patch
diff options
context:
space:
mode:
Diffstat (limited to 'package/tcpdump/0004-fix-CVE-2014-8769.patch')
-rw-r--r--package/tcpdump/0004-fix-CVE-2014-8769.patch19
1 files changed, 19 insertions, 0 deletions
diff --git a/package/tcpdump/0004-fix-CVE-2014-8769.patch b/package/tcpdump/0004-fix-CVE-2014-8769.patch
new file mode 100644
index 0000000000..38eaf1247c
--- /dev/null
+++ b/package/tcpdump/0004-fix-CVE-2014-8769.patch
@@ -0,0 +1,19 @@
+From https://bugzilla.redhat.com/show_bug.cgi?id=1165162
+
+Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
+
+--- tcpdump-tcpdump-4.6/print-udp.c 2014-11-21 13:53:05.757690197 +0700
++++ tcpdump-4.6.2/print-udp.c 2014-11-21 13:50:58.077695164 +0700
+@@ -357,6 +357,12 @@
+ #ifdef INET6
+ register const struct ip6_hdr *ip6;
+ #endif
++ u_int caplength;
++
++ /* Checking length of available data before print */
++ caplength = (ndo->ndo_snapend >= bp) ? ndo->ndo_snapend - bp : 0;
++ if (length > caplength)
++ length = caplength;
+
+ if (ep > ndo->ndo_snapend)
+ ep = ndo->ndo_snapend;
OpenPOWER on IntegriCloud