Skip to content

Commit 471a3e4

Browse files
HughRletoams
authored andcommitted
security: Fix for CVE-2020-1763
pluto will crash on a null pointer dereference when trying to log an error for an IKEv1 packet containing bogus information and/or flags. Signed-off-by: Paul Wouters <pwouters@redhat.com>
1 parent 5f05339 commit 471a3e4

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

Diff for: programs/pluto/ikev1.c

+1-1
Original file line numberDiff line numberDiff line change
@@ -2129,7 +2129,7 @@ void process_packet_tail(struct msg_digest *md)
21292129
"%smessage ignored because it contains a payload type (%s) unexpected by state %s",
21302130
excuse,
21312131
enum_show(&ikev1_payload_names, np),
2132-
st->st_state->name);
2132+
finite_states[smc->state]->name);
21332133
if (!md->encrypted) {
21342134
SEND_NOTIFICATION(INVALID_PAYLOAD_TYPE);
21352135
}

0 commit comments

Comments
 (0)