projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7e237b7) | patch
package/slirp: add upstream security fix for CVE-2020-29129 / CVE-2020-29130
authorPeter Korsgaard <peter@korsgaard.com>
Fri, 27 Nov 2020 17:25:15 +0000 (18:25 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Sat, 28 Nov 2020 07:53:57 +0000 (08:53 +0100)
commit282fc60ed4bbf30f0c74fe0434053b472eca356b
treebacec0b8135ddbeb4001081b706f29052996f83dtree
parent7e237b79ad138dd296477c7ed631ca83f5145fc5commit | diff
package/slirp: add upstream security fix for CVE-2020-29129 / CVE-2020-29130

While processing ARP/NCSI packets in 'arp_input' or 'ncsi_input'
routines, ensure that pkt_len is large enough to accommodate the
respective protocol headers, lest it should do an OOB access.
Add check to avoid it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/slirp/0001-slirp-check-pkt_len-before-reading-protocol-header.patch [new file with mode: 0644] blob
package/slirp/slirp.mk diff | blob | history