diff options
author | Peiran Hong <peiran.hong@windriver.com> | 2019-09-13 17:27:29 -0400 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2019-10-05 07:45:13 -0700 |
commit | 6a98afe854907a6263ab5f08ccbc155943470c59 (patch) | |
tree | f2e4749d52754041338e3c69aa46817f49e6e412 /meta-networking/recipes-support/openvpn | |
parent | 3bdbf72e3a4bf18a4a2c7afbde4f7ab773aeded9 (diff) | |
download | meta-openembedded-6a98afe854907a6263ab5f08ccbc155943470c59.tar.gz |
tcpdump: Fix CVE-2017-16808
Backport selected parts of three upstream commits to fix
CVE-2017-16808 where tcpdump 4.9.2 has a heap-based buffer over-read.
Upstream-Status: Backport
[ several ]
Upstream commits fully backported:
46aead6 [CVE-2017-16808/AoE: Add a missing bounds check]
Upstream commits partially backported:
7068209 [Use nd_ types in 802.x and FDDI headers.]
84ef17a [Replace ND_TTEST2()/ND_TCHECK2() macros by macros using
pointers (1/n)]
46aead6 fixes the vulnerability and requires two macros defined in
7068209 and 84ef17a, which are committed after the release of 4.9.2.
Only the definition of the macros are taken from the two commits
as they impact a wide range of code and are difficult to integrate.
CVE: CVE-2017-16808
Signed-off-by: Peiran Hong <peiran.hong@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 62fc26075afc2d56a73777aad753a643fbdafbfa)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-networking/recipes-support/openvpn')
0 files changed, 0 insertions, 0 deletions