Google Git
Sign in
kernel / pub / scm / network / connman / connman / 99e2c16ea1cced34a5dc450d76287a1c3e762138
commit99e2c16ea1cced34a5dc450d76287a1c3e762138[log] [tgz]
authorDaniel Wagner <wagi@monom.org>Tue Apr 11 08:12:56 2023 +0200
committerDaniel Wagner <wagi@monom.org>Tue Apr 11 08:12:56 2023 +0200
tree3241fecab3526ba395c7376848c7fd21418fc612
parent9971144ae862e83f1f5d8cb84c0b62f2542dcdec [diff]
gdhcp: Verify and sanitize packet length first

Avoid overwriting the read packet length after the initial test. Thus
move all the length checks which depends on the total length first
and do not use the total lenght from the IP packet afterwards.

Fixes CVE-2023-28488

Reported by Polina Smirnova <moe.hwr@gmail.com>
1 file changed
tree: 3241fecab3526ba395c7376848c7fd21418fc612
  1. client/
  2. doc/
  3. gdbus/
  4. gdhcp/
  5. gsupplicant/
  6. gweb/
  7. include/
  8. m4/
  9. plugins/
  10. scripts/
  11. src/
  12. test/
  13. tools/
  14. unit/
  15. vpn/
  16. .gitignore
  17. .mailmap
  18. acinclude.m4
  19. AUTHORS
  20. bootstrap
  21. bootstrap-configure
  22. ChangeLog
  23. configure.ac
  24. connman.pc.in
  25. COPYING
  26. HACKING
  27. INSTALL
  28. Makefile.am
  29. Makefile.plugins
  30. NEWS
  31. README
  32. TODO