Wireshark · Wireshark-commits: [Wireshark-commits] master-2.4 f8fbe9f: BER: don't use invalid time offsets.

Wireshark-commits: [Wireshark-commits] master-2.4 f8fbe9f: BER: don't use invalid time offsets.

From: Wireshark code review <code-review-do-not-reply@xxxxxxxxxxxxx>

Date: Mon, 28 Jan 2019 15:01:27 +0000

URL: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=f8fbe9f934d65b2694fa74622e5eb2e1dc8cd20b
Submitter: "Peter Wu <peter@xxxxxxxxxxxxx>"
Changed: branch: master-2.4
Repository: wireshark

Commits:

f8fbe9f by Dario Lombardo (lomato@xxxxxxxxx):

    BER: don't use invalid time offsets.
    
    4 digits values could overflow the destination buffer. Skip them
    since they're invalid and can only from tainted data.
    
    Bug: 15447
    Change-Id: Ice6d4f144597499483160ecaa63702025ab86f61
    Reviewed-on: https://code.wireshark.org/review/31751
    Petri-Dish: Peter Wu <peter@xxxxxxxxxxxxx>
    Tested-by: Petri Dish Buildbot
    Reviewed-by: Peter Wu <peter@xxxxxxxxxxxxx>
    (cherry picked from commit cb47fe6b05a70776fdd6df4a84be26f8361587ea)
    Reviewed-on: https://code.wireshark.org/review/31778
    

Actions performed:

    from  77254d8   [Automatic update for 2019-01-27]
     add  f8fbe9f   BER: don't use invalid time offsets.


Summary of changes:
 epan/dissectors/packet-ber.c | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

Prev by Date: [Wireshark-commits] master-2.6 d632d88: BER: don't use invalid time offsets.
Next by Date: [Wireshark-commits] master d90806a: IEEE1609dot2: Use GUINT_TO_POINTER/GPOINTER_TO_UINT to store a guint32
Previous by thread: [Wireshark-commits] master-2.6 d632d88: BER: don't use invalid time offsets.
Next by thread: [Wireshark-commits] master d90806a: IEEE1609dot2: Use GUINT_TO_POINTER/GPOINTER_TO_UINT to store a guint32
Index(es):
- Date
- Thread