proxmox-mirrors/mirror_frr
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_frr synced 2025-08-08 12:49:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

ospfd: OoB access (Cov 1452454 1452455 1452456)

Browse Source 
Signed-off-by: F. Aragon <paco@voltanet.io>
This commit is contained in:
paco 2018-06-14 19:19:44 +02:00
parent 558c7c80bf
commit 9ffaacb0f7
No known key found for this signature in database
GPG Key ID: FD112A8C7E6A5E4A
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
ospfd/ospf_ri.c
View File

@ -516,12 +516,13 @@ static void unset_sr_node_msd(void)
TLV_LEN(OspfRI.sr_info.msd) = htons(0); TLV_LEN(OspfRI.sr_info.msd) = htons(0);
} }
static void unset_param(struct tlv_header *tlv) static void unset_param(void *tlv_buffer)
{ {
struct tlv_header *tlv = (struct tlv_header *)tlv_buffer;
tlv->type = 0; tlv->type = 0;
/* Fill the Value to 0 */ /* Fill the Value to 0 */
memset(TLV_DATA(tlv), 0, TLV_BODY_SIZE(tlv)); memset(TLV_DATA(tlv_buffer), 0, TLV_BODY_SIZE(tlv));
tlv->length = 0; tlv->length = 0;
return; return;
@ -1571,7 +1572,7 @@ DEFUN (no_pce_address,
"PCE address in IPv4 address format\n") "PCE address in IPv4 address format\n")
{ {
unset_param(&OspfRI.pce_info.pce_address.header); unset_param(&OspfRI.pce_info.pce_address);
/* Refresh RI LSA if already engaged */ /* Refresh RI LSA if already engaged */
if (CHECK_FLAG(OspfRI.flags, RIFLG_LSA_ENGAGED)) if (CHECK_FLAG(OspfRI.flags, RIFLG_LSA_ENGAGED))
@ -1621,7 +1622,7 @@ DEFUN (no_pce_path_scope,
"32-bit Hexadecimal value\n") "32-bit Hexadecimal value\n")
{ {
unset_param(&OspfRI.pce_info.pce_address.header); unset_param(&OspfRI.pce_info.pce_address);
/* Refresh RI LSA if already engaged */ /* Refresh RI LSA if already engaged */
if (CHECK_FLAG(OspfRI.flags, RIFLG_LSA_ENGAGED)) if (CHECK_FLAG(OspfRI.flags, RIFLG_LSA_ENGAGED))
@ -1810,7 +1811,7 @@ DEFUN (no_pce_cap_flag,
"Disable PCE capabilities\n") "Disable PCE capabilities\n")
{ {
unset_param(&OspfRI.pce_info.pce_cap_flag.header); unset_param(&OspfRI.pce_info.pce_cap_flag);
/* Refresh RI LSA if already engaged */ /* Refresh RI LSA if already engaged */
if (CHECK_FLAG(OspfRI.flags, RIFLG_LSA_ENGAGED)) if (CHECK_FLAG(OspfRI.flags, RIFLG_LSA_ENGAGED))