Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

tighten isakmp header length validation. from kame

Browse Source
This commit is contained in:
itojun 2002-08-28 04:44:04 +00:00
parent b6aefbe19f
commit bcb0cf6929
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
crypto/dist/kame/racoon/isakmp.c vendored
View File

@ -173,8 +173,8 @@ isakmp_handler(so_isakmp)
goto end;
}
/* check isakmp header length */
if (len < sizeof(isakmp)) {
/* check isakmp header length, as well as sanity of header length */
if (len < sizeof(isakmp) || ntohl(isakmp.len) < sizeof(isakmp)) {
plog(LLV_ERROR, LOCATION, (struct sockaddr *)&remote,
"packet shorter than isakmp header size.\n");
/* dummy receive */