Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 93637b6e850344c507ea70fc7fb676ef3f6358e9
commit93637b6e850344c507ea70fc7fb676ef3f6358e9[log] [tgz]
authorKOVACS Krisztian <hidden@balabit.com>Wed Nov 19 10:53:20 2014 +0100
committerWilly Tarreau <w@1wt.eu>Fri Nov 21 20:59:12 2014 +0100
tree4222329882c264d83dd7547b82f111c714b0a638
parent8ba50128832bb31e95f06fe4cb2bd172f2b945fe [diff]
BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information

Previously, if hdr_v2->len was less than the length of the protocol
specific address information we could have read after the end of the
buffer and initialize the sockaddr structure with junk.

Signed-off-by: KOVACS Krisztian <hidden@balabit.com>

[WT: this is only tagged medium since proxy protocol is only used from
 trusted sources]

This must be backported to 1.5.
(cherry picked from commit efd3aa93412648cf923bf3d2e171c0b84e9d7a69)
1 file changed
tree: 4222329882c264d83dd7547b82f111c714b0a638
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. README
  13. ROADMAP
  14. SUBVERS
  15. VERDATE
  16. VERSION