]> git.puffer.fish Git - mirror/frr.git/commit
projects / mirror / frr.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a0bf59b) | patch
bgpd: CVE-2011-3327 (ext. comm. buffer overflow)
authorCROSS <info@codenomicon.com>
Mon, 26 Sep 2011 09:17:05 +0000 (13:17 +0400)
committerDenis Ovsienko <infrastation@yandex.ru>
Mon, 26 Sep 2011 14:46:16 +0000 (18:46 +0400)
commit94431dbc753171b48b5c6806af97fd690813b00a
tree463b917f9f80236be01e4502863b34ae2d52b53dtree | snapshot
parenta0bf59bcac8b40c3f83e7f2e7f65087ece6acfc7commit | diff
bgpd: CVE-2011-3327 (ext. comm. buffer overflow)

This vulnerability (CERT-FI #513254) was reported by CROSS project.
They have also suggested a fix to the problem, which was found
acceptable.

The problem occurs when bgpd receives an UPDATE message containing
255 unknown AS_PATH attributes in Path Attribute Extended Communities.
This causes a buffer overlow in bgpd.

* bgp_ecommunity.c
  * ecommunity_ecom2str(): perform size check earlier
bgpd/bgp_ecommunity.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.