godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-05 14:09:53 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d41ff469b5a9bdf136ba72dc631ee7a4ffab0b9a
buildroot/package/lldpd
History
Fabrice Fontaine 8dd87af9c8 package/lldpd: fix CVE-2023-41910 
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU
packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can
remotely force the lldpd daemon to perform an out-of-bounds read on heap
memory. This occurs in cdp_decode in daemon/protocols/cdp.c.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 3557a7b599b5b443730f8d0634a39c1694646ce3)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-09-24 20:00:59 +02:00
..
0001-daemon-fix-read-overflow-when-parsing-CDP-addresses.patch
Config.in
lldpd.hash
lldpd.mk
S60lldpd