Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / efd3aa93412648cf923bf3d2e171c0b84e9d7a69
commitefd3aa93412648cf923bf3d2e171c0b84e9d7a69[log] [tgz]
authorKOVACS Krisztian <hidden@balabit.com>Wed Nov 19 10:53:20 2014 +0100
committerWilly Tarreau <w@1wt.eu>Fri Nov 21 07:45:17 2014 +0100
treefcac7ce917c949dd96b8b62259a9f47c31072c69
parent9654e57fac86c773091b892f42015ba2ba56be5a [diff]
BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information

Previously, if hdr_v2->len was less than the length of the protocol
specific address information we could have read after the end of the
buffer and initialize the sockaddr structure with junk.

Signed-off-by: KOVACS Krisztian <hidden@balabit.com>

[WT: this is only tagged medium since proxy protocol is only used from
 trusted sources]

This must be backported to 1.5.
1 file changed
tree: fcac7ce917c949dd96b8b62259a9f47c31072c69
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. README
  13. ROADMAP
  14. SUBVERS
  15. VERDATE
  16. VERSION