isisd: Fix use beyond end of stream of ASLA Sub-TLV parsing - matthieu/frr.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Carmine Scarpitta <carmine.scarpitta@uniroma2.it>	2023-06-10 16:08:25 +0200
committer	Mergify <37929162+mergify[bot]@users.noreply.github.com>	2023-06-20 13:20:13 +0000
commit	f1c151c7ff1df907ee439e2099fc3b4ebc7d775b (patch)
tree	1434116033d449683c39097d43ffd7f532b88f96 /staticd/static_main.c
parent	61ba3a4d564401ff9a66ad10a9338c3206bfa779 (diff)

isisd: Fix use beyond end of stream of ASLA Sub-TLV parsing

Fixes a crash associated with attempting to read beyond the end of the stream when parsing ASLA Sub-TLV. ``` Program received signal SIGABRT, Aborted. __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:50 50 ../sysdeps/unix/sysv/linux/raise.c: No such file or directory. (gdb) bt subtlv_len=13 '\r') at isisd/isis_tlvs.c:1473 at isisd/isis_tlvs.c:3264 context=<optimized out>, mtid=<optimized out>) at isisd/isis_tlvs.c:6078 indent=4) at isisd/isis_tlvs.c:6142 avail_len=<optimized out>, context=<optimized out>) at isisd/isis_tlvs.c:7032 at isisd/isis_tlvs.c:7054 (gdb) ``` Caught by fuzzer. Signed-off-by: Carmine Scarpitta <carmine.scarpitta@uniroma2.it> (cherry picked from commit 2a9e0824a7bd85d5436615065f0311910106c3cf)

Diffstat (limited to 'staticd/static_main.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: