CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2016/02/03 07:48:36
Modified files:
sbin/dhclient : packet.c
usr.sbin/dhcpd : packet.c
usr.sbin/dhcrelay: packet.c
Log message:
be very careful accepting packets via bpf. First check that the
fixed part of the IP header is completely present before using its
header length field. Then use the data in the IP header to ensure
the entire IP packet is present. Then check that the entire UDP header
is present. Then use the data in the UDP header to ensure all the
data it thinks is present is actually present.
Started when tj@ and a few others noticed ISC "DHCP CVE-2015-8605:
UDP payload length not properly checked".
ok sthen@ henning@
