upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-06-12 10:10:24 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/contrib
History
Guy Harris 508356c038
tcpdump: ppp: Use the buffer stack for the de-escaping buffer 
This both saves the buffer for freeing later and saves the packet
pointer and snapend to be restored when packet processing is complete,
even if an exception is thrown with longjmp.

This means that the hex/ASCII printing in pretty_print_packet()
processes the packet data as captured or read from the savefile, rather
than as modified by the PPP printer, so that the bounds checking is
correct.

That fixes CVE-2024-2397, which was caused by an exception being thrown
by the hex/ASCII printer (which should only happen if those routines are
called by a packet printer, not if they're called for the -X/-x/-A
flag), which jumps back to the setjmp() that surrounds the packet
printer.  Hilarity^Winfinite looping ensues.

Also, restore ndo->ndo_packetp before calling the hex/ASCII printing
routine, in case nd_pop_all_packet_info() didn't restore it.

Reviewed by:	emaste

(cherry picked from commit f8860353d4)
2024-09-09 16:38:25 -03:00
..
arm-optimized-routines Update the Arm Optimized Routine library to v24.01 2024-04-08 13:15:18 +00:00
atf atf: Guard against multiple evaluation. 2024-05-20 09:04:54 +00:00
bc contrib/bc: fix build with GCC 2024-09-03 18:28:14 +02:00
bearssl Merge commit 'd84e570b54961e8874bbd8de25635eb96be0977e' 2023-02-20 22:13:27 -08:00
bionic-x86_64-string
blocklist blacklistd: Handle fds that are pointing to routing sockets 2024-03-25 18:28:30 -04:00
bmake Merge bmake-20230622 2023-06-27 13:57:58 -07:00
bsddialog
bsnmp bsnmp: make single bit bitfields unsigned to avoid clang 16 warning 2023-04-17 18:26:03 +02:00
byacc byacc: Adjust expected test output to match our patches. 2023-02-22 20:05:02 +01:00
bzip2 bzip2: remove locally added __FBSDID 2023-12-13 23:08:50 +00:00
capsicum-test capsicum: introduce cap_rights_is_empty Function 2024-06-05 11:55:17 -04:00
com_err
cortex-strings
dialog
diff gnu diff3: apply patch to committed src, rather than at build time 2022-11-13 21:33:40 -05:00
dma dma: use OpenSSL 1.1 init API 2023-05-11 19:03:34 -04:00
ee ee: Fix use of uninitialised pointer in ispell_op 2024-09-07 01:01:06 +01:00
elftoolchain readelf: fix -wR option, memory leaks, and -wf minor bug 2023-03-06 12:51:23 -05:00
expat MFC: MFV: expat 2.6.0. 2024-02-20 22:52:29 -08:00
file (upstream) PR/386: Add newlines for consitency 2 2023-11-03 23:28:32 -04:00
flex
gdtoa
googletest Import GoogleTest 1.14.0 2023-08-10 02:32:33 -07:00
hyperv/tools hyperv/kvp: Remove set but unused variables. 2023-06-27 10:19:32 -07:00
jemalloc release: update stable/14 following branching from main 2023-08-24 19:07:33 -04:00
kyua
ldns ldns: Ignore commented-out lines in resolv.conf. 2024-05-20 09:04:54 +00:00
ldns-host
less MFV: less: Do not trust st_size if it equals zero 2024-04-27 00:07:32 -07:00
lib9p lib9p: Remove set but unused sockets[] array from l9p_start_server. 2023-06-20 09:28:59 -07:00
libarchive libarchive: merge bugfixes from vendor branch 2024-05-03 06:51:37 +02:00
libbegemot
libc-pwcache Remove __FBSDID from netbsd libc sources 2023-12-13 23:08:50 +00:00
libc-vis Remove __FBSDID from netbsd libc sources 2023-12-13 23:08:50 +00:00
libcbor libcbor: vendor update to 0.11.0 2024-08-01 11:11:45 -04:00
libcxxrt Tentatively apply https://github.com/libcxxrt/libcxxrt/pull/27 2024-04-19 23:14:14 +02:00
libdivsufsort
libedit libedit: update to snapshot 2023-01-06 2023-02-06 14:25:06 +01:00
libevent libevent: Import libevent 2.1.12 2023-11-28 07:15:25 -08:00
libexecinfo
libfido2 libfido2: update to 1.14.0 2024-08-01 11:11:45 -04:00
libpcap libpcap: Update to 1.10.4 2023-05-05 10:56:10 -03:00
libucl libucl: import snapshot 2024-02-06 2024-03-27 09:18:47 +01:00
libxo Merge commit '7087c8de43b0d5d27c52da6ba2ba4957b7e336ff' into new_merge 2023-01-30 00:04:21 -05:00
llvm-project Merge commit d2353ae00c3b from llvm git (by Argyrios Kyrtzidis): 2024-08-13 11:24:24 +02:00
lua Merge LUA 5.4.6 2023-07-15 11:31:04 -06:00
lutok
mandoc mandoc: Fix bootstrapping on macOS with Clang 16 / Apple Clang 15 2024-05-02 21:10:13 +01:00
mknod
mtree
ncurses ncurses: readd 2 html files in the doc (fix MK_HTML=yes) 2024-06-27 11:06:23 +02:00
netbsd-tests tmpfs tests: Remove an xfail annotation 2024-05-08 09:06:16 -04:00
netcat netcat: Allow nc to be an if_tun tunnel broker 2023-01-17 10:05:49 +00:00
ntp ntp: Vendor import of ntp-4.2.8p18 2024-05-29 18:42:19 -07:00
nvi nvi: import version 2.2.1 2023-12-04 11:20:00 +01:00
ofed irdma(4): Upgrade to 1.2.36-k 2024-02-20 21:45:32 -08:00
one-true-awk awk: Merge in bsd-feature branch of OTA from 20240422 (31bb33a32f71) 2024-05-20 13:29:26 -06:00
openbsm OpenBSM: Remove $FreeSBD$ tags from the configuration files 2024-03-21 06:51:30 +01:00
opencsd/decoder Import OpenCSD v.1.4.0. 2023-03-27 17:03:16 +01:00
openpam openpam: Migrate from COMPAT_32BIT to generic COMPAT_libcompat 2023-07-09 18:48:17 +01:00
openresolv
pam_modules/pam_passwdqc
pf pf: Remove __FBSDID() macro use 2023-12-13 23:08:50 +00:00
pjdfstest
pnglite
pnpinfo pnpinfo: remove locally added __FBSDID 2023-12-13 23:08:50 +00:00
processor-trace
sendmail Merge commit '850ef5ae11d69ea3381bd310f564f025fc8caea3' 2024-02-07 02:29:43 +00:00
smbfs smbfs manuals: describe consistently 2024-06-12 15:46:25 -06:00
spleen contrib/spleen: update to Spleen 2.0.0 2023-06-08 10:42:25 -04:00
sqlite3 sqlite3: Vendor import of sqlite3 3.46.1 2024-09-02 17:01:33 -07:00
tcp_wrappers tcp_wrappers: silence a few warnings 2024-02-08 18:40:06 +01:00
tcpdump tcpdump: ppp: Use the buffer stack for the de-escaping buffer 2024-09-09 16:38:25 -03:00
tcsh
telnet Fix snprintf truncation in telnet 2023-12-24 14:59:34 +01:00
terminus
tnftp
traceroute traceroute: Implement ECN bleaching detection 2024-02-02 09:32:24 -05:00
tzcode tzcode: Fix overflow handling in TZ parser. 2024-02-21 21:33:23 +01:00
tzdata contrib/tzdata: import tzdata 2024b 2024-09-09 09:44:03 +08:00
unbound unbound: Vendor import 1.21.0 2024-08-23 12:29:42 -07:00
unifdef unifdef: Handle redefined symbols correctly. 2023-09-07 20:28:31 +00:00
unvis
vis
wireguard-tools Merge commit '93bf91b4012a28610672d2266366dfa0a663b70f' into HEAD 2022-11-04 22:46:21 -05:00
wpa hostapd: Work around lack of MLME support 2024-04-02 17:28:45 -07:00
xz Backport export of lzma_mt_block_size symbol. 2024-04-07 21:01:25 -07:00