]> git.ipfire.org Git - thirdparty/lldpd.git/commit
projects / thirdparty / lldpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9dee8de) | patch
sonmp: fix heap overflow when reading SONMP packets
authorVincent Bernat <vincent@bernat.ch>
Sun, 19 Sep 2021 19:18:47 +0000 (21:18 +0200)
committerVincent Bernat <vincent@bernat.ch>
Sat, 13 Nov 2021 12:20:11 +0000 (13:20 +0100)
commit73d42680fce8598324364dbb31b9bc3b8320adf7
tree527fdc5f755fd0a5566a94fdd9233949b6b48826tree | snapshot
parent9dee8deceb3b4978b938be042a1e0bc60d89b29ecommit | diff
sonmp: fix heap overflow when reading SONMP packets

By sending short SONMP packets, an attacker can make the decoder crash
by reading too much data on the heap. SONMP packets are fixed in size,
just ensure we get the enough bytes to contain a SONMP packet.

CVE-2021-43612
NEWS diff | blob | blame | history
src/daemon/protocols/sonmp.c diff | blob | blame | history
src/daemon/protocols/sonmp.h diff | blob | blame | history
tests/check_sonmp.c diff | blob | blame | history
Link Layer Discovery Protocol from http://github.com/vincentbernat/lldpd