tcpdump mailing list archives

Automatic report from sources (tcpdump libpcap htdocs) between 06.01.2004 - 07.01.2004 GMT

From: "Automatic cvs log generator /tcpdump/bin/makelog" <mcr () sandelman ottawa on ca>
Date: Wed, 7 Jan 2004 05:06:31 -0500 (EST)

CVS log entries from 06.01.2004 (Tue) 10:05:26 - 07.01.2004 (Wed) 10:05:28 GMT
=====================================================
Summary by authors
=====================================================
Author: hannes
        File: tcpdump/CREDITS; Revisions: 1.91, 1.87.2.3
        File: tcpdump/print-isakmp.c; Revisions: 1.42, 1.36.2.6
        File: tcpdump/print-radius.c; Revisions: 1.24, 1.19.2.3

=====================================================
Combined list of identical log entries
=====================================================
Description:
bugfix from Jonathan Heusser <jonny () drugphish ch>

  The first critical piece of code is found in print-isakmp.c:332. The
  function rawprint() does not check its arguments thus it's easy for
  an attacker to pass a big 'len' or a bogus 'loc' leading to a
  segmentation fault in the for loop.

  The second bug is located in print-radius.c:471. The for loop of
  print_attr_string() is written in an unsafe manner. 'length'
  and 'data' should be checked.
Modified files:
        File: tcpdump/CREDITS; Revision: 1.91;
        Date: 2004/01/07 08:00:52; Author: hannes; Lines: (+1 -0)
        File: tcpdump/CREDITS; Revision: 1.87.2.3;
        Date: 2004/01/07 07:53:17; Author: hannes; Lines: (+1 -0)
        File: tcpdump/print-isakmp.c; Revision: 1.42;
        Date: 2004/01/07 08:00:51; Author: hannes; Lines: (+9 -1)
        File: tcpdump/print-isakmp.c; Revision: 1.36.2.6;
        Date: 2004/01/07 07:53:17; Author: hannes; Lines: (+9 -1)
        File: tcpdump/print-radius.c; Revision: 1.24;
        Date: 2004/01/07 08:00:52; Author: hannes; Lines: (+2 -2)
        File: tcpdump/print-radius.c; Revision: 1.19.2.3;
        Date: 2004/01/07 07:53:17; Author: hannes; Lines: (+2 -2)
=====================================================
Log entries
=====================================================
=====================================================
Summary of modified files
=====================================================
File: tcpdump/CREDITS
Revisions: 1.91, 1.87.2.3
Authors: hannes (+1 -0), hannes (+1 -0)
-------------------------------
File: tcpdump/print-isakmp.c
Revisions: 1.42, 1.36.2.6
Authors: hannes (+9 -1), hannes (+9 -1)
-------------------------------
File: tcpdump/print-radius.c
Revisions: 1.24, 1.19.2.3
Authors: hannes (+2 -2), hannes (+2 -2)
-- 
Automatic cron job from /tcpdump/bin/makelog
-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:tcpdump-workers-request () tcpdump org?body=unsubscribe

Current thread:

Automatic report from sources (tcpdump libpcap htdocs) between 06.01.2004 - 07.01.2004 GMT Automatic cvs log generator /tcpdump/bin/makelog (Jan 07)