CVSROOT: /cvs Module name: src Changes by: r...@cvs.openbsd.org 2019/12/19 09:47:14
Modified files:
usr.sbin/ripd : auth.c
Log message:
Validate auth_offset before using it. If it's too big ripd will crash.
RFC 2082, chapter 3.1 sys about the offset:
A 16 bit offset from the RIP-2 header to the MD5 digest (if no
other trailer fields are ever defined, this value equals the
RIP-2 Data Length).
Problem reported by Hiltjo Posthuma.
OK claudio@ deraadt@ benno@
