]> git.puffer.fish Git - matthieu/frr.git/commit
projects / matthieu / frr.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8f228de) | patch
bgpd/security: CVE-2010-1674 Fix crash due to extended-community parser error
authorPaul Jakma <paul@quagga.net>
Sun, 5 Dec 2010 17:17:26 +0000 (17:17 +0000)
committerPaul Jakma <paul@quagga.net>
Mon, 21 Mar 2011 13:50:56 +0000 (13:50 +0000)
commit0c46638122f10019a12ae9668aec91691cf2e017
tree1302073e844ff46061ebb938bcd218ed9fbb96bftree | snapshot
parent8f228de7b3f9d6f641c75b27ac7ac6e5862cf804commit | diff
bgpd/security: CVE-2010-1674 Fix crash due to extended-community parser error

* bgp_attr.c: (bgp_attr_ext_communities) Certain extended-community attrs
  can leave attr->flag indicating ext-community is present, even though no
  extended-community object has been attached to the attr structure.  Thus a
  null-pointer dereference can occur later.
  (bgp_attr_community) No bug fixed here, but tidy up flow so it has same
  form as previous.

  Problem and fix thanks to anonymous reporter.
bgpd/bgp_attr.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.