d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
66c7b53d95
freebsd-nq/sbin
History
Tom Jones 66c7b53d95 ping: Fix handling of IP packet sizes 
Ping reads raw IP packets to parse ICMP responses. When reading the
IP Header Len (IHL) ping was was taking the value from the provided
packet without any validation. This could lead to remotely triggerable
stack corruption.

Validate the IHL against expected and recieved data sizes when reading
from the received packet and when reading any quoted packets from within
the ICMP response.

Approved by:	so
Reviewed by:	markj, asomers
Security:	FreeBSD-SA-22:15.ping
Security:	CVE-2022-23093
Sponsored by:   NetApp, Inc.
Sponsored by:   Klara, Inc.
X-NetApp-PR:    #77
Differential Revision: https://reviews.freebsd.org/D37195

(cherry picked from commit 46d7b45a26)
(cherry picked from commit 186f495d4b)
2022-11-29 15:00:43 -08:00
..
adjkerntz
bectl bectl: push space-in-name check down into libbe 2022-04-06 09:32:51 -05:00
bsdlabel Remove deprecated GEOM classes 2019-08-13 20:06:55 +00:00
camcontrol camcontrol fwdownload minor improvements 2022-03-09 13:52:23 -07:00
ccdconfig
clri In preparation for adding inode check-hashes, clean up and 2018-11-13 21:40:56 +00:00
comcontrol Remove sio(4). 2019-11-21 01:24:49 +00:00
conscontrol Remove sio(4). 2019-11-21 01:24:49 +00:00
ddb ddb: use 'textdump dump' instead of 'call doadump' 2019-10-18 12:32:01 +00:00
decryptcore decryptcore: preload OpenSSL error strings; seed PRNG 2020-12-11 14:32:42 +00:00
devd devd: Add rtw to wireless list 2022-03-29 17:54:19 -06:00
devfs devfs.rules: Correctly unhide pf in vnet jails 2021-11-24 17:45:51 +01:00
devmatch devmatch(8): Fix section ordering 2020-11-20 16:34:01 +00:00
dhclient dhclient: support VID 0 (no vlan) decapsulation 2022-03-07 08:18:57 -05:00
dmesg
dump Correct assert added to dump program. 2021-05-20 15:57:37 -07:00
dumpfs dumpfs(8): add option to only print superblock information 2022-02-23 09:27:27 -09:00
dumpon dumpon.8: Ask DDB to call doadump() rather than calling it directly 2021-03-15 11:40:16 -04:00
etherswitchcfg Add the 'drop tagged' flag support for ethernet switch ports. 2019-06-28 22:12:43 +00:00
fdisk Remove deprecated GEOM classes 2019-08-13 20:06:55 +00:00
ffsinfo ffsinfo: Update example to avoid to-be-deprecated vinum 2021-04-09 21:26:23 -04:00
fsck fsck(8): Fix typo 2022-01-15 20:34:18 +08:00
fsck_ffs Ensure that fsck(8) / fsck_ffs(8) produces the correct exit code for missing devices. 2022-03-16 16:14:57 -07:00
fsck_msdosfs Use %ju and cast to (uintmax_t) to avoid using PRI* macros. 2020-09-28 04:30:31 +00:00
fsdb Update fsdb(8) to reflect new structure of fsck_ffs(8). 2022-02-26 13:38:48 -08:00
fsirand Filesystem utilities that modify the filesystem (growfs(8), tunefs(8), 2020-10-25 01:36:33 +00:00
gbde gbde(8) - simplify randomisation with arc4random_buf 2019-02-11 00:11:02 +00:00
geom Allow GEOM utilities to specify a -v option. 2021-11-23 15:04:33 -08:00
ggate Various fixes for ggatec and ggated 2022-02-16 21:07:15 -07:00
growfs growfs: do not error if filesystem is already requested size 2021-11-21 19:30:18 -05:00
gvinum gvinum: add deprecation notice 2021-12-03 10:16:23 -05:00
hastctl
hastd hastd(8) assumes it has no extra file descriptors opened 2020-11-29 13:45:53 +00:00
ifconfig ifconfig: remove debug printf introduced in 779fd05344 2022-03-28 15:25:27 +00:00
init init: execute /etc/rc.final after all user processes have terminated 2021-08-26 01:42:00 -05:00
ipf ipf(5): Fix a typo in the manual page 2022-04-15 15:26:50 +02:00
ipfw ipfw: Introduce dnctl 2021-09-14 22:00:24 +02:00
iscontrol Update old iSCSI initiator man pages for removal from 14 and later 2021-10-26 16:23:41 -04:00
kldconfig kldconfig(8): Add EXAMPLES to the man page 2020-09-29 17:52:15 +00:00
kldload
kldstat kldstat(8): style(9) fixes. 2022-01-07 14:23:09 +01:00
kldunload
ldconfig ldconfig: remove two symbols 2022-01-15 02:51:14 +02:00
md5 md5(1): Fix a typo in the manual page 2021-08-19 09:29:01 +02:00
mdconfig mdconfig: Add a regression test for mediasize rounding 2021-09-07 09:36:18 -04:00
mdmfs mdmfs(8): Fix an issue reported by mandoc 2020-10-03 18:47:50 +00:00
mknod
mksnap_ffs Deduplicate fsid comparisons 2020-05-21 01:55:35 +00:00
mount Move the mount name to bit mapping into sys/mount.h so it can be shared with the 2020-08-19 17:09:58 +00:00
mount_cd9660
mount_fusefs sbin/mount_fusefs/mount_fusefs.8: Fix typos 2021-12-14 14:48:35 -07:00
mount_msdosfs Fix a few mandoc issues 2020-10-09 14:03:45 +00:00
mount_nfs mount_nfs: Add a "bgnow" NFS mount option 2022-01-25 15:25:06 -08:00
mount_nullfs mount_nullfs: rename a local variable 2021-04-08 02:15:00 +00:00
mount_udf
mount_unionfs
natd natd: Remove uneeded in_cksum.h includes 2021-12-01 07:42:13 -05:00
newfs newfs(8): Fix a bug in initialization of sblock.fs_maxbsize . 2022-03-17 13:26:14 +01:00
newfs_msdos newfs_msdos: connect the ATF test from NetBSD 2022-03-02 15:56:30 -06:00
nfsiod pkgbase: Add nfsiod to the FreeBSD-nfs package 2021-08-16 18:15:47 +02:00
nos-tun pkgbase: Create a FreeBSD-utilities package and make it the default one 2019-09-05 14:15:47 +00:00
nvmecontrol nvme: fix spelling of Namespace 2022-02-27 17:59:31 -08:00
pfctl libpfctl: fix creatorid endianness 2022-02-18 11:14:58 +01:00
pfilctl Do a sweep and remove most WARNS=6 settings 2020-10-01 01:10:51 +00:00
pflogd
ping ping: Fix handling of IP packet sizes 2022-11-29 15:00:43 -08:00
ping6 Merge ping6 to ping 2020-11-26 04:29:30 +00:00
quotacheck Normally when an attempt is made to mount a UFS/FFS filesystem whose 2018-12-06 00:09:39 +00:00
rcorder [rcorder] [crunch] Fix C function declarations to include void 2020-09-21 17:59:45 +00:00
reboot Address a mandoc warning 2020-11-10 14:17:05 +00:00
recoverdisk Do a sweep and remove most WARNS=6 settings 2020-10-01 01:10:51 +00:00
resolvconf
restore Clean up global variable declarations in the dump and restore 2020-04-04 00:56:56 +00:00
route route: remove write-only struct hostent from getaddr() 2022-01-26 19:35:40 -05:00
routed sbin/routed: Remove unused code for sgi and NetBSD. 2020-12-25 17:42:47 -08:00
rtsol Update Makefile.depend files 2019-12-11 17:37:53 +00:00
savecore savecore: bail on write error even when decompressing 2020-12-11 22:52:12 +00:00
sconfig pkgbase: Put sconfig in FreeBSD-utilities 2022-01-05 18:23:51 +01:00
setkey Refer to AES-CBC as "aes-cbc" rather than "rijndael-cbc" for IPsec. 2020-06-04 22:58:37 +00:00
shutdown shutdown.8: Fix typo 2020-07-05 13:08:17 +00:00
spppcontrol pkgbase: Move spppcontrol to FreeBSD-ppp 2022-01-05 18:23:49 +01:00
swapon swapon(8): adapt to the new swapoff(2) interface 2021-12-20 02:29:11 +02:00
sysctl sbin/sysctl: Fix CTLFLAG_SKIP for adjacent nodes 2021-01-28 19:36:46 -05:00
tests
tunefs Filesystem utilities that modify the filesystem (growfs(8), tunefs(8), 2020-10-25 01:36:33 +00:00
umount Document that umount -A does not unmount /dev 2020-06-18 23:12:55 +00:00
veriexec veriexec(8): Bugfix for an issue reported by mandoc 2020-10-03 18:46:42 +00:00
zfsbootcfg loader: zfs should support bootonce an nextboot 2020-09-21 09:01:10 +00:00
Makefile sbin: build ping if at least one of INET & INET6 is enabled 2021-12-12 20:28:58 -05:00
Makefile.amd64
Makefile.arm
Makefile.i386
Makefile.inc build: provide a default WARNS for all in-tree builds 2020-09-18 17:17:46 +00:00
Makefile.mips
Makefile.powerpc64