pimd segfaults if invalid message PIM join/prune messages are received

troglobit / pimd

PIM-SM/SSM multicast routing for UNIX and Linux

http://troglobit.com/projects/pimd/

BSD 3-Clause "New" or "Revised" License

200 stars 90 forks source link

pimd segfaults if invalid message PIM join/prune messages are received #32

Closed idismmxiv closed 10 years ago

idismmxiv commented 10 years ago

Hi.

Found out that suitable malformed join/prune messages can segfault pimd. As code already states (TODO: Sanity check for message length...), fix was found from Kame's pim6sd. I do have couple of .pcap's as well, but could not attach them here.

troglobit commented 10 years ago

Thank you! :-)