rpms/tcpdump/FC-4 tcpdump-3.8.2-bgp-dos-2.patch, NONE, 1.1 tcpdump.spec, 1.35, 1.36

Wed Jun 8 07:58:30 UTC 2005

Author: stransky

Update of /cvs/dist/rpms/tcpdump/FC-4
In directory cvs.devel.redhat.com:/tmp/cvs-serv26120

Modified Files:
	tcpdump.spec 
Added Files:
	tcpdump-3.8.2-bgp-dos-2.patch 
Log Message:
fix for CAN-2005-1267 - BGP DoS, #159209

tcpdump-3.8.2-bgp-dos-2.patch:
 print-bgp.c |    5 +++--
 1 files changed, 3 insertions(+), 2 deletions(-)

--- NEW FILE tcpdump-3.8.2-bgp-dos-2.patch ---
--- tcpdump-3.8.2/tcpdump-3.8.2/print-bgp.c.old	2005-05-31 11:58:00.000000000 +0200
+++ tcpdump-3.8.2/tcpdump-3.8.2/print-bgp.c	2005-05-31 12:01:01.000000000 +0200
@@ -1706,9 +1706,10 @@
 		while (dat + length > p) {
 			char buf[MAXHOSTNAMELEN + 100];
 			i = decode_prefix4(p, buf, sizeof(buf));
-			if (i == -1)
+			if (i == -1) {
 				printf("\n\t    (illegal prefix length)");
-			else if (i == -2)
+				break;
+                        } else if (i == -2)
 				goto trunc;
 			else {
 				printf("\n\t    %s", buf);


Index: tcpdump.spec
===================================================================
RCS file: /cvs/dist/rpms/tcpdump/FC-4/tcpdump.spec,v
retrieving revision 1.35
retrieving revision 1.36
diff -u -r1.35 -r1.36
--- tcpdump.spec	28 Apr 2005 12:47:23 -0000	1.35
+++ tcpdump.spec	8 Jun 2005 07:58:27 -0000	1.36
@@ -2,7 +2,7 @@
 %define PCAP_UID 77
 %define PCAP_GID 77
 
-%define releaseno 12
+%define releaseno 13.FC4
 %define arpwatch_release %{releaseno}
 %define pcap_release %{releaseno}
 %define tcpdump_release %{releaseno}
@@ -46,6 +46,7 @@
 Patch20: tcpdump-3.8.2-bgp-dos.patch
 Patch21: tcpdump-3.8.2-isis-dos.patch
 Patch22: tcpdump-3.8.2-ldp-dos.patch
+Patch23: tcpdump-3.8.2-bgp-dos-2.patch
 
 Patch34: arpwatch-2.1a4-fhs.patch
 Patch35: arpwatch-2.1a10-man.patch
@@ -139,6 +140,7 @@
 %patch20 -p1 -b .bgp-dos
 %patch21 -p1 -b .isis-dos
 %patch22 -p2 -b .ldp-dos
+%patch23 -p2 -b .bgp-dos-2
 tar xzf %{SOURCE6}
 popd
 
@@ -317,6 +319,9 @@
 %{_vararpwatch}/massagevendor-old
 
 %changelog
+* Tue Jun  7 2005 Martin Stransky <stransky at redhat.com> - 14:3.8.2-13.FC4
+- fix for CAN-2005-1267 - BGP DoS, #159209
+
 * Thu Apr 28 2005 Martin Stransky <stransky at redhat.com> - 14:3.8.2-12
 - fix for CAN-2005-1280 Multiple DoS issues in tcpdump 
   (CAN-2005-1279 CAN-2005-1278), #156041


