Project

General

Custom queries

Profile

Actions
Copy link

Bug #6787

closed

decode/pppoe: Suspicious pointer scaling

Added by Philippe Antoine about 1 year ago. Updated about 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.0-beta1
Affected Versions:
8.0.0-beta1
Effort:
Difficulty:
Label:

Description

pppoedt = pppoedt + (4 + tag_length);. looks like it can overflow on 32-bits system

Subtasks 2 (0 open2 closed)

Bug #6809: decode/pppoe: Suspicious pointer scaling (6.0.x backport)RejectedPhilippe AntoineActions
Bug #6810: decode/pppoe: Suspicious pointer scaling (7.0.x backport)ClosedPhilippe AntoineActions
#2

Updated by Philippe Antoine about 1 year ago

  • Status changed from New to In Review
#3

Updated by Philippe Antoine about 1 year ago

  • Tracker changed from Security to Bug
  • Private changed from Yes to No
  • Severity deleted (MODERATE)
#4

Updated by Philippe Antoine about 1 year ago

  • Target version changed from TBD to 8.0.0-beta1
#5

Updated by OISF Ticketbot about 1 year ago

  • Subtask #6809 added
#6

Updated by OISF Ticketbot about 1 year ago

  • Label deleted (Needs backport to 6.0)
#7

Updated by OISF Ticketbot about 1 year ago

  • Subtask #6810 added
#8

Updated by OISF Ticketbot about 1 year ago

  • Label deleted (Needs backport to 7.0)
#9

Updated by Victor Julien about 1 year ago

  • Subject changed from decode/ppoe: Suspicious pointer scaling to decode/pppoe: Suspicious pointer scaling
#12

Updated by Philippe Antoine about 1 year ago

  • Status changed from In Review to Resolved
#13

Updated by Philippe Antoine about 1 year ago

  • Status changed from Resolved to Closed
Actions
Copy link

Also available in: Atom PDF