Skip to content
Permalink
Browse files

tcpdump: #1547

  • Loading branch information...
MingcongBai committed Jan 14, 2019
1 parent e06ea30 commit fd35c4a096733f4c8a4c9f7e1951db77b9cb1766
Showing with 24 additions and 0 deletions.
  1. +23 −0 extra-network/tcpdump/autobuild/patches/tcpdump-CVE-2018-19519.patch
  2. +1 −0 extra-network/tcpdump/spec
@@ -0,0 +1,23 @@
From 32af00b05a6ef573d0b340f97b54c13eb9509dc7 Mon Sep 17 00:00:00 2001
From: Pedro Monreal <pmgdeb@gmail.com>
Date: Thu, 6 Dec 2018 12:18:38 +0100
Subject: [PATCH] CVE-2018-19519 buffer overread. Initialize buf in
print-hncp.c:print_prefix.

---
print-hncp.c | 2 ++
1 file changed, 2 insertions(+)

Index: tcpdump-4.9.2/print-hncp.c
===================================================================
--- tcpdump-4.9.2.orig/print-hncp.c
+++ tcpdump-4.9.2/print-hncp.c
@@ -206,6 +206,8 @@ print_prefix(netdissect_options *ndo, co
int plenbytes;
char buf[sizeof("xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx::/128")];

+ buf[0] = '\0';
+
if (prefix[0] >= 96 && max_length >= IPV4_MAPPED_HEADING_LEN + 1 &&
is_ipv4_mapped_address(&prefix[1])) {
struct in_addr addr;
@@ -1,2 +1,3 @@
VER=4.9.2
REL=1
SRCTBL="http://www.tcpdump.org/release/tcpdump-$VER.tar.gz"

0 comments on commit fd35c4a

Please sign in to comment.
You can’t perform that action at this time.