CVSROOT: /cvs Module name: src Changes by: [email protected] 2026/06/11 03:44:08
Modified files:
sbin/isakmpd : message.c
Log message:
isakmpd(8): Validate DELETE payload SPI array size [1/2]
The number of SPIs provided in a DELETE message is not properly
validated. This might cause a read beyond the message end. However,
the outside read is limited to 4 bytes for IPsec SAs and 16 bytes
for ISAKMP SAs. A crash is possible, but seems unlikely to me.
test & ok sthen
