bgpd: fix insecure data write with area addresses - matthieu/frr.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Louis Scalbert <louis.scalbert@6wind.com>	2023-09-28 16:55:43 +0200
committer	Louis Scalbert <louis.scalbert@6wind.com>	2023-09-28 17:51:26 +0200
commit	57d0dc565f6a99c3d61b9b67a40ad88a83773eb6 (patch)
tree	e10c0b98ace70fa6b7d3bcfd74f9755ca4786f65 /zebra/dpdk/zebra_dplane_dpdk.c
parent	54222f921305edbce74e81996e9303c0c6b03823 (diff)

bgpd: fix insecure data write with area addresses

Fix an issue where an attacker may inject a tainted length value to corrupt the memory. > CID 1568380 (#1 of 1): Untrusted value as argument (TAINTED_SCALAR) > 9. tainted_data: Passing tainted expression length to bgp_linkstate_nlri_value_display, which uses it as an offset Fixes: 8b531b1107 ("bgpd: store and send bgp link-state attributes") Signed-off-by: Louis Scalbert <louis.scalbert@6wind.com>

Diffstat (limited to 'zebra/dpdk/zebra_dplane_dpdk.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: