summaryrefslogtreecommitdiffstats
path: root/lib/queue.h
diff options
context:
space:
mode:
authorDonatas Abraitis <donatas@opensourcerouting.org>2024-05-24 08:58:30 +0200
committerDonatas Abraitis <donatas@opensourcerouting.org>2024-05-24 09:38:49 +0200
commit0d079e01e55c35f466dc4982d9c2964f81a70140 (patch)
treed53b0b1c60507f9e3ed1688adb3c7a53e74f3ecc /lib/queue.h
parentbgpd: Send a notification if we receive CAPABILITY message if not exepected (diff)
downloadfrr-0d079e01e55c35f466dc4982d9c2964f81a70140.tar.xz
frr-0d079e01e55c35f466dc4982d9c2964f81a70140.zip
bgpd: Check if FQDN capability length is in valid ranges
If FQDN capability comes as dynamic capability we should check if the encoding is proper. Before this patch we returned an error if the hostname/domainname length check was > end. But technically, if the length is also == end, this is a malformed capability, because we use the data incorrectly after we check the length. This causes heap overflow (when compiled with address-sanitizer). Signed-off-by: Iggy Frankovic <iggyfran@amazon.com> Signed-off-by: Donatas Abraitis <donatas@opensourcerouting.org>
Diffstat (limited to 'lib/queue.h')
0 files changed, 0 insertions, 0 deletions