Project

General

Profile

Security #6675

Updated by Jason Ish 9 months ago

The test to check if all fragments exist is flawed. It adds up the data lengths, which can cause it to be larger than the data available in case of fragments. 

 To fix, the length of the re-assembled packet should only be incremented to the last byte of data seen. 

 This is covered by test peose/bsd/173 peiose/bsd/176

Back