New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap-buffer-overflow in /src/common/get.c:174 function get_l2len #477
Comments
|
What version is this? What OS? Please send the output of |
|
Received the following which suggests the issue is in 4.3 beta1: |
|
tcpprep -V os :ubuntu 14.04 |
|
This is similar to #484. In this case, declared captured length is huge (837240390) but snaplen is only 4 so that libpcap truncates the packets to 4 bytes and sets AFAICS this has been fixed in branch 4.3 by commit 0253c47 (but the fix is missing in master branch). This commit is already in v4.3.0-beta1 so the CVE text is probably wrong unless they mean a different bug. |
|
Duplicate of #408. Fixed in version 4.3. |
heap-buffer-overflow in /src/common/get.c:174 function get_l2len
command:
asan report:
poc
The text was updated successfully, but these errors were encountered: