PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 04:31:29 +00:00
Code Issues Projects Releases Wiki Activity

Fix out-of-bounds reads. Closes #2954

Browse Source
This commit is contained in:
dmiller
2025-02-27 16:42:05 +00:00
parent d0a94ce3a9
commit 068dd4b0df
3 changed files with 9 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
libnetutil/PacketParser.cc
View File

@@ -572,6 +572,7 @@ pkt_type_t *PacketParser::parse_packet(const u8 *pkt, size_t pktlen, bool eth_in
}else{
finished=true;
}
continue;
}
}
}
@@ -591,7 +592,7 @@ pkt_type_t *PacketParser::parse_packet(const u8 *pkt, size_t pktlen, bool eth_in
/* If we couldn't validate some header, treat that header and any remaining
* data, as raw application data. */
if (unknown_hdr==true){
if (unknown_hdr==true && current_header < MAX_HEADERS_IN_PACKET) {
if(curr_pktlen>0){
if(PKTPARSERDEBUG)puts("Unknown layer found. Treating it as raw data.");
this_packet[current_header].length=curr_pktlen;
@@ -599,6 +600,9 @@ pkt_type_t *PacketParser::parse_packet(const u8 *pkt, size_t pktlen, bool eth_in
}
}
/* Ensure the sentinel value is correct: */
assert(current_header <= MAX_HEADERS_IN_PACKET);
this_packet[current_header].length = 0;
return this_packet;
} /* End of parse_received_packet() */