tcpdump mailing list archives
Re: CVE-2007-1218 applicable to tcpdump 3.9.4?
From: Guy Harris <guy () alum mit edu>
Date: Sat, 10 Mar 2007 14:20:06 -0800
Albert Chin wrote:
Is CVE-2007-1218 applicable to tcpdump 3.9.4? Doesn't seem so as the line in the following patch was added after 3.9.4:
The problem in 3.9.5 was that the line was wrong. The problem in 3.9.4 and before was that the line was *absent*.The check makes sure that the amount of stuff to be copied to tim.bitmap will fit in tim.bitmap, so if the check is wrong *or* absent, a carefully-constructed packet can overflow pbody->tim.bitmap.
- This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Current thread:
- CVE-2007-1218 applicable to tcpdump 3.9.4? Albert Chin (Mar 06)
- Re: CVE-2007-1218 applicable to tcpdump 3.9.4? Guy Harris (Mar 10)
- Re: CVE-2007-1218 applicable to tcpdump 3.9.4? Florian Weimer (Mar 12)
- Re: CVE-2007-1218 applicable to tcpdump 3.9.4? Guy Harris (Mar 12)
- Re: CVE-2007-1218 applicable to tcpdump 3.9.4? Florian Weimer (Mar 12)
- Re: CVE-2007-1218 applicable to tcpdump 3.9.4? Guy Harris (Mar 10)