]> git.puffer.fish Git - mirror/frr.git/commit
projects / mirror / frr.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3eca6f0) | patch
bgpd: CVE-2011-3327 (ext. comm. buffer overflow)
authorCROSS <info@codenomicon.com>
Mon, 26 Sep 2011 09:17:05 +0000 (13:17 +0400)
committerDenis Ovsienko <infrastation@yandex.ru>
Mon, 26 Sep 2011 14:39:37 +0000 (18:39 +0400)
commita1afbc6e1d56b06409de5e8d7d984d565817fd96
treea45dfa998baab938e8373950b7bf4c7af60f6dc1tree | snapshot
parent3eca6f099d5a3aac0b66dfbf98fd8be84ea426b7commit | diff
bgpd: CVE-2011-3327 (ext. comm. buffer overflow)

This vulnerability (CERT-FI #513254) was reported by CROSS project.
They have also suggested a fix to the problem, which was found
acceptable.

The problem occurs when bgpd receives an UPDATE message containing
255 unknown AS_PATH attributes in Path Attribute Extended Communities.
This causes a buffer overlow in bgpd.

* bgp_ecommunity.c
  * ecommunity_ecom2str(): perform size check earlier
bgpd/bgp_ecommunity.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.