mirror of https://github.com/OISF/suricata
cybersecurityidsintrusion-detection-systemintrusion-prevention-systemipsnetwork-monitornetwork-monitoringnsmsecuritysuricatathreat-hunting
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5ffe7e21c3
DecodeTeredo, DecodeIPv6InIPv6 and DecodeIPv4inIPv6 were calling
DecodeTunnel with packet being a pseudo packet and data being
data from initial packet:
DecodeTunnel(tv, dtv, tp, start, blen,
pq, IPPROTO_IPV6);
In decoding functions, arithmetic was done on pkt to set some values?
It was resulting in field of packet pointing outside of the scope of
packet data.
This patch switch to what has been done in DecodeGre(), I mean:
DecodeTunnel(tv, dtv, tp, GET_PKT_DATA(tp),
GET_PKT_LEN(tp), pq, IPPROTO_IP);
Data buffer is then relative to the packet and the arithmetic is
correct.
|
13 years ago | |
|---|---|---|
| benches | ||
| contrib/file_processor | 13 years ago | |
| doc | 14 years ago | |
| libhtp | 13 years ago | |
| m4 | ||
| qa | 13 years ago | |
| rules | 13 years ago | |
| src | 13 years ago | |
| .gitignore | ||
| COPYING | ||
| ChangeLog | 13 years ago | |
| LICENSE | ||
| Makefile.am | 13 years ago | |
| Makefile.cvs | ||
| acsite.m4 | ||
| autogen.sh | 13 years ago | |
| classification.config | ||
| configure.ac | 13 years ago | |
| doxygen.cfg | 13 years ago | |
| mkinstalldirs | ||
| reference.config | 14 years ago | |
| suricata.yaml.in | 13 years ago | |
| threshold.config | 13 years ago | |