]> git.ipfire.org Git - thirdparty/FORT-validator.git/commit
projects / thirdparty / FORT-validator.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0da59d8) | patch
Truncate erroneos PDU if incomplete
authorAlberto Leiva Popper <ydahhrk@gmail.com>
Tue, 24 Oct 2023 18:52:09 +0000 (12:52 -0600)
committerAlberto Leiva Popper <ydahhrk@gmail.com>
Tue, 24 Oct 2023 19:49:31 +0000 (13:49 -0600)
commit4d5582d00857b9ec8426a46be9c1709c9fda5ac0
treec9359b3ef0cd1d0946ab3f60467f617c27afd8b4tree
parent0da59d8a8f2c77ef64bd74b5774f832737dd6d5dcommit | diff
Truncate erroneos PDU if incomplete

This can happen if eg. the client parrots length 512 in header, but only
sends 8 bytes.

Fort was trying to assemble a 512 length erroneous PDU using an 8 byte
buffer, and therefore leaking raw memory contents to the client.
src/rtr/pdu_sender.c diff | blob | blame | history
Mirror of https://github.com/NICMx/FORT-validator.git