diff options
author | Paul Jakma <paul@quagga.net> | 2010-12-05 17:17:26 +0000 |
---|---|---|
committer | Denis Ovsienko <infrastation@yandex.ru> | 2011-07-04 21:02:00 +0400 |
commit | fc09716b81e67f2d06dc92ff7bcb1efdf18c4eec (patch) | |
tree | 0685e19912029d28e8a0731091419e836423f24c /bgpd/bgp_fsm.c | |
parent | f668053f1453d64296db6807101450ad749ba730 (diff) |
bgpd/security: CVE-2010-1674 Fix crash due to extended-community parser error
* bgp_attr.c: (bgp_attr_ext_communities) Certain extended-community attrs
can leave attr->flag indicating ext-community is present, even though no
extended-community object has been attached to the attr structure. Thus a
null-pointer dereference can occur later.
(bgp_attr_community) No bug fixed here, but tidy up flow so it has same
form as previous.
Problem and fix thanks to anonymous reporter.
(cherry picked from commit 0c46638122f10019a12ae9668aec91691cf2e017)
Diffstat (limited to 'bgpd/bgp_fsm.c')
0 files changed, 0 insertions, 0 deletions