commit | 99e2c16ea1cced34a5dc450d76287a1c3e762138 | [log] [tgz] |
---|---|---|
author | Daniel Wagner <wagi@monom.org> | Tue Apr 11 08:12:56 2023 +0200 |
committer | Daniel Wagner <wagi@monom.org> | Tue Apr 11 08:12:56 2023 +0200 |
tree | 3241fecab3526ba395c7376848c7fd21418fc612 | |
parent | 9971144ae862e83f1f5d8cb84c0b62f2542dcdec [diff] |
gdhcp: Verify and sanitize packet length first Avoid overwriting the read packet length after the initial test. Thus move all the length checks which depends on the total length first and do not use the total lenght from the IP packet afterwards. Fixes CVE-2023-28488 Reported by Polina Smirnova <moe.hwr@gmail.com>