Skip to content
Commit 282fc60e authored by Peter Korsgaard's avatar Peter Korsgaard
Browse files

package/slirp: add upstream security fix for CVE-2020-29129 / CVE-2020-29130 



While processing ARP/NCSI packets in 'arp_input' or 'ncsi_input'
routines, ensure that pkt_len is large enough to accommodate the
respective protocol headers, lest it should do an OOB access.
Add check to avoid it.

Signed-off-by: default avatarPeter Korsgaard <peter@korsgaard.com>
parent 7e237b79
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment