d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
a8f92d247e
freebsd-dev/sbin
History
Tom Jones 46d7b45a26 ping: Fix handling of IP packet sizes 
Ping reads raw IP packets to parse ICMP responses. When reading the
IP Header Len (IHL) ping was was taking the value from the provided
packet without any validation. This could lead to remotely triggerable
stack corruption.

Validate the IHL against expected and recieved data sizes when reading
from the received packet and when reading any quoted packets from within
the ICMP response.

Approved by:	so
Reviewed by:	markj, asomers
Security:	FreeBSD-SA-22:15.ping
Security:	CVE-2022-23093
Sponsored by:   NetApp, Inc.
Sponsored by:   Klara, Inc.
X-NetApp-PR:    #77
Differential Revision: https://reviews.freebsd.org/D37195
2022-11-29 14:51:50 -08:00
..
adjkerntz adjkerntz(8): revert "detect extra jailed invokation to keep logs clean" 2022-06-23 21:46:08 +07:00
bectl pkgbase: Put zfs utilities and lib in their own package 2022-10-26 19:46:30 +02:00
bsdlabel
camcontrol
ccdconfig
clri pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
comcontrol
conscontrol
ddb mac: add new mac_ddb(4) policy 2022-07-18 22:06:15 +00:00
decryptcore Indicate that kgdb.1 is from ports/devel/gdb. 2022-08-14 15:17:29 +02:00
devd Make devd shared now that libc++ is in /lib 2022-11-20 11:49:09 -05:00
devfs devfs.rules: Do not expose "log" in the default devfs rules. 2022-05-24 09:54:38 -04:00
devmatch Make SYNOPSIS match DESCRIPTION. 2022-11-03 00:20:12 +01:00
dhclient dhclient(8): Verify lease-, renewal- and rebinding-time option sizes. 2022-11-14 16:47:21 +01:00
dmesg dmesg: Better wording from review 2022-05-07 09:55:40 -06:00
dump pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
dumpfs pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
dumpon Indicate which port gdb.1 and kgdb.1 come from. 2022-08-17 19:13:22 +02:00
etherswitchcfg
fdisk
ffsinfo pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
fsck
fsck_ffs Fix printfs for fsck_ffs(8) i386 build. 2022-11-09 21:59:20 -08:00
fsck_msdosfs
fsdb pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
fsirand pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
gbde pkgbase: Put geom utilities in their own package 2022-10-26 19:46:28 +02:00
geom pkgbase: Put geom utilities in their own package 2022-10-26 19:46:28 +02:00
ggate
growfs pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
gvinum pkgbase: Put geom utilities in their own package 2022-10-26 19:46:28 +02:00
hastctl
hastd Remove PAGE_SIZE from hastd 2022-06-17 10:36:17 +01:00
ifconfig pfsync: prepare code to accommodate AF_INET6 family 2022-11-09 21:06:07 +01:00
init init: allow to start script executions with sh -o verify 2022-10-11 09:48:04 +02:00
ipf ipfilter: replace defunct home page link with FAQ URL 2022-11-15 17:11:59 -05:00
ipfw ipfw: Fix ipfw/dnctl detection 2022-11-22 09:53:20 +01:00
kldconfig
kldload kldload: Bring functionality in line with manual page 2022-06-17 16:53:28 +02:00
kldstat
kldunload
ldconfig
md5 sbin/md5.c: fix -q -c for BSD style versions 2022-07-26 23:04:57 +02:00
mdconfig
mdmfs
mknod
mksnap_ffs pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
mount Delete xref to suidperl(1) which has long since been removed in perl5.12. 2022-08-14 15:43:27 +02:00
mount_cd9660
mount_fusefs In man page cross refs to sudo, indicate it comes from ports/security/sudo. 2022-08-14 11:44:43 +02:00
mount_msdosfs
mount_nfs mount_nfs.8: Fix the RFC number now that it exists 2022-09-24 15:05:21 -07:00
mount_nullfs Improve description of the nocache option. 2022-05-06 13:03:30 +02:00
mount_udf
mount_unionfs mount_unionfs: remove jokey cautions from man page 2022-10-31 16:52:54 -04:00
natd natd: use PF_DIVERT/SOCK_RAW instead of PF_INET/SOCK_RAW/IPPROTO_DIVERT 2022-08-30 16:24:37 -07:00
newfs Enable taking snapshots on UFS/FFS filesystems using journaled soft updates. 2022-11-12 22:56:03 -08:00
newfs_msdos newfs_msdos: Fix warnings that arise when compiled for makefs 2022-05-10 17:26:50 -04:00
nfsiod
nos-tun
nvmecontrol nvmecontrol: Fix IEEE OUI Identifier output 2022-11-19 19:14:00 -08:00
pfctl pf: drop support for fragment crop|drop-ovl 2022-11-28 20:19:12 +01:00
pfilctl
pflogd
ping ping: Fix handling of IP packet sizes 2022-11-29 14:51:50 -08:00
ping6
quotacheck Add a flags parameter to the ffs_sbget() function that reads UFS superblocks. 2022-07-30 22:51:38 -07:00
rcorder
reboot
recoverdisk
resolvconf pkgbase: Put resolvconf in its own package 2022-10-26 19:46:26 +02:00
restore pkgbase: Put ufs related tools and lib in their own package 2022-10-26 19:46:34 +02:00
route
routed Bump .Dd for recently modified manual pages 2022-06-27 18:20:03 +02:00
rtsol
savecore savecore: add an option to save a live minidump 2022-04-18 12:56:16 -03:00
sconfig
setkey ipsec: add support for CHACHA20POLY1305 2022-11-02 14:19:04 +01:00
shutdown shutdown.8: Add a note about needed priviledges to run the command 2022-11-07 12:00:11 +01:00
swapon
sysctl sysctl.8: Reference sysctl(9) 2022-06-30 16:22:01 +02:00
tests
tunefs Enable taking snapshots on UFS/FFS filesystems using journaled soft updates. 2022-11-12 22:56:03 -08:00
umount umount(8): Remove a double word in a source code comment 2022-04-09 10:13:45 +02:00
veriexec Add -S option to veriexec 2022-07-19 08:59:53 -07:00
zfsbootcfg
Makefile
Makefile.amd64
Makefile.arm
Makefile.i386
Makefile.inc
Makefile.powerpc64