[Bug 238022] buffer overrun in function make_request in sbin/dhclient/dhclient.c
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Nov 29 03:32:32 UTC 2019
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=238022
--- Comment #3 from commit-hook at freebsd.org ---
A commit references this bug:
Author: cem
Date: Fri Nov 29 03:31:47 UTC 2019
New revision: 355204
URL: https://svnweb.freebsd.org/changeset/base/355204
Log:
Fix braino in previous bugfix r300174
The previous revision missed the exact same error in a copy paste block
of the same code in another function. Fix the identical case, too.
A DHCP client identifier is simply the hardware type (one byte)
concatenated with the hardware address (some variable number of bytes,
but at most 16). Limit the size of the temporary buffer to match and
the rest of the calculations shake out correctly.
PR: 238022
Reported by: Young <yangx92 AT hotmail.com>
Submitted by: Young <yangx92 AT hotmail.com>
MFC after: I don't plan to but you should feel free
Security: yes
Changes:
head/sbin/dhclient/dhclient.c
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list