diff options
author | Denis Ovsienko <infrastation@yandex.ru> | 2011-09-26 13:18:02 +0400 |
---|---|---|
committer | Denis Ovsienko <infrastation@yandex.ru> | 2011-09-26 18:46:54 +0400 |
commit | 717750433839762d23a5f8d88fe0b4d57c8d490a (patch) | |
tree | aea292ef6dab658197d1df6c9a5bf3f3925013ad /isisd/topology/spacyc.c | |
parent | 61ab0301606053192f45c188bc48afc837518770 (diff) |
ospfd: CVE-2011-3325 part 2 (OSPF pkt type segv)
This vulnerability (CERT-FI #514838) was reported by CROSS project.
The error is reproducible only when ospfd debugging is enabled:
* debug ospf packet all
* debug ospf zebra
When incoming packet header type field is set to 0x0a, ospfd will crash.
* ospf_packet.c
* ospf_verify_header(): add type field check
* ospf_read(): perform input checks early
Diffstat (limited to 'isisd/topology/spacyc.c')
0 files changed, 0 insertions, 0 deletions