Skip to content

Commit

Permalink
security: Fix for CVE-2020-1763
Browse files Browse the repository at this point in the history 
pluto will crash on a null pointer dereference when trying to log an error
for an IKEv1 packet containing bogus information and/or flags.

Signed-off-by: Paul Wouters <pwouters@redhat.com>
  • Loading branch information
@HughR @letoams
HughR authored and letoams committed May 11, 2020
1 parent 5f05339 commit 471a3e4
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion programs/pluto/ikev1.c
View file
Expand Up @@ -2129,7 +2129,7 @@ void process_packet_tail(struct msg_digest *md)
"%smessage ignored because it contains a payload type (%s) unexpected by state %s",
excuse,
enum_show(&ikev1_payload_names, np),
st->st_state->name);
finite_states[smc->state]->name);
if (!md->encrypted) {
SEND_NOTIFICATION(INVALID_PAYLOAD_TYPE);
}
Expand Down

0 comments on commit 471a3e4

Please sign in to comment.