X-Git-Url: https://review.fuel-infra.org/gitweb?a=blobdiff_plain;f=cirros-testvm%2Fsrc-cirros%2Fbuildroot-2015.05%2Fpackage%2Ftcpdump%2F0003-fix-CVE-2014-8768.patch;fp=cirros-testvm%2Fsrc-cirros%2Fbuildroot-2015.05%2Fpackage%2Ftcpdump%2F0003-fix-CVE-2014-8768.patch;h=a8b82cf7017f634d53bf02b38553f681470fb711;hb=b0a0f15dfaa205161a7fcb20cf1b8cd4948c2ef3;hp=0000000000000000000000000000000000000000;hpb=c6ac3cd55ee2da956195eee393b0882105dfad4e;p=packages%2Ftrusty%2Fcirros-testvm.git

diff --git a/cirros-testvm/src-cirros/buildroot-2015.05/package/tcpdump/0003-fix-CVE-2014-8768.patch b/cirros-testvm/src-cirros/buildroot-2015.05/package/tcpdump/0003-fix-CVE-2014-8768.patch
new file mode 100644
index 0000000..a8b82cf
--- /dev/null
+++ b/cirros-testvm/src-cirros/buildroot-2015.05/package/tcpdump/0003-fix-CVE-2014-8768.patch
@@ -0,0 +1,19 @@
+From https://bugzilla.redhat.com/show_bug.cgi?id=1165161
+
+Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
+
+--- tcpdump-tcpdump_4.5/print-geonet.c	2014-02-17 05:58:41.000000000 +0700
++++ print-geonet.c	2014-11-21 10:06:58.590217933 +0700
+@@ -237,6 +237,12 @@
+ 		printf("Malformed (small) ");
+ 	}
+ 
++	/* Checking length before print */
++	u_int caplength;
++	caplength = (ndo->ndo_snapend >= bp) ? ndo->ndo_snapend - bp : 0;
++	if (length > caplength)
++		length = caplength;
++
+ 	/* Print user data part */
+ 	if (ndo->ndo_vflag)
+ 		default_print(bp, length);