git: dhclient - Be more strict in check_option().
Antonio Huete Jimenez
tuxillo at crater.dragonflybsd.org
Sun Aug 19 07:32:41 PDT 2012
commit 313ef36c6db715415e5498d028f29a4acae56ea0
Author: Antonio Huete Jimenez <tuxillo at quantumachine.net>
Date: Wed Aug 1 21:43:24 2012 +0200
dhclient - Be more strict in check_option().
ISC dhclient had a buffer overflow: http://www.kb.cert.org/vuls/id/410676 and
while our dhclient is not vulnerable to that, it got us looking at how the
subnet mask option is handled.
This limits specific ip address options to length 4 in conformance with RFC 2132.
Taken-from: OpenBSD
Summary of changes:
sbin/dhclient/dhclient.c | 30 ++++++++++++++++++++++--------
1 files changed, 22 insertions(+), 8 deletions(-)
http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/313ef36c6db715415e5498d028f29a4acae56ea0
--
DragonFly BSD source repository
More information about the Commits
mailing list