tcpdump/ikev1_id_ipv6_addr_subnet-oobr.pcap at 8dca25d26c7ca2caf6138267f6f17111212c156e

mirror of https://github.com/the-tcpdump-group/tcpdump.git synced 2024-11-24 10:33:28 +08:00

Guy Harris 061e7371a9 CVE-2017-13689/IKEv1: Fix addr+subnet length check.

An IPv6 address plus subnet mask is 32 bytes, not 20 bytes.
16 bytes of IPv6 address, 16 bytes of subnet mask.

This fixes a buffer over-read discovered by Bhargava Shastry,
SecT/TU Berlin.

Add a test using the capture file supplied by the reporter(s).

2017-09-13 12:25:44 +01:00

147 B

Raw History

View Raw

147 B Raw History

147 B

Raw History