CVSROOT: /cvs Module name: src Changes by: [email protected] 2026/05/13 23:53:13
Modified files:
sbin/dhcpleased: engine.c
Log message:
dhcpleased: Validate size of imsg_dhcp.len
If the frontend manages to write something bad to imsg (bypassing the
frontend's validation), where imsg_dhcp.len is > sizeof(imsg_dhcp.packet) it is
possible for an OOB read to be forced in the engine. Make this fatal.
ok florian@
