CVSROOT: /cvs
Module name: src
Changes by: dera...@cvs.openbsd.org 2019/12/19 09:50:46
Modified files:
usr.sbin/ripd : Tag: OPENBSD_6_6 auth.c
Log message:
Validate auth_offset before using it. If it's too big ripd will crash.
RFC 2082, chapter 3.1 sys about the offset:
A 16 bit offset from the RIP-2 header to the MD5 digest (if no
other trailer fields are ever defined, this value equals the
RIP-2 Data Length).
Problem reported by Hiltjo Posthuma.
OK claudio@ deraadt@ benno@
this is errata 6.6/016_ripd.patch.sig
