]> git.proxmox.com Git - mirror_frr.git/commit - lib/zclient.c
projects / mirror_frr.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6b143a6) | patch
lib: Check prefix length from zebra is sensible
authorPaul Jakma <paul.jakma@hpe.com>
Tue, 9 Feb 2016 15:23:03 +0000 (15:23 +0000)
committerDonald Sharp <sharpd@cumulusnetworks.com>
Fri, 23 Sep 2016 16:12:17 +0000 (12:12 -0400)
commitd91788284ed910bcf945c01ceb18334423cc352d
tree9f79d7d56a5e5d7abb7455d01c4c8b832e1dc243tree
parent6b143a68d3a44be42f2370b9d91409eceb14cebdcommit | diff
lib: Check prefix length from zebra is sensible

* zclient.c: prefix length on router-id and interface address add
  messages not sanity checked.  fix.

* */*_zebra.c: Prefix length on zebra route read was not checked, and
  clients use it to write to storage.  An evil zebra could overflow
  client structures by sending overly long prefixlen.

Prompted by discussions with:

Donald Sharp <sharpd@cumulusnetworks.com>
bgpd/bgp_zebra.c diff | blob | blame | history
isisd/isis_zebra.c diff | blob | blame | history
lib/zclient.c diff | blob | blame | history
ospf6d/ospf6_zebra.c diff | blob | blame | history
ospfd/ospf_zebra.c diff | blob | blame | history
ripd/rip_zebra.c diff | blob | blame | history
ripngd/ripng_zebra.c diff | blob | blame | history
FRRouting mirror