CVSROOT: /cvs Module name: src Changes by: dera...@cvs.openbsd.org 2019/12/19 09:50:46
Modified files: usr.sbin/ripd : Tag: OPENBSD_6_6 auth.c Log message: Validate auth_offset before using it. If it's too big ripd will crash. RFC 2082, chapter 3.1 sys about the offset: A 16 bit offset from the RIP-2 header to the MD5 digest (if no other trailer fields are ever defined, this value equals the RIP-2 Data Length). Problem reported by Hiltjo Posthuma. OK claudio@ deraadt@ benno@ this is errata 6.6/016_ripd.patch.sig