Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unsafe access by index may panic #6

Closed
kpcyrd opened this issue Oct 22, 2017 · 2 comments
Closed

Unsafe access by index may panic #6

kpcyrd opened this issue Oct 22, 2017 · 2 comments

Comments

@kpcyrd
Copy link

kpcyrd commented Oct 22, 2017

I've fuzzed sniffglue with cargo-fuzz for a couple of days and it discovered a panic in the packet processing. The panic occures inside dhcp4r, which is used for dhcp decoding. The problem seems to be an out of range access in dhcp4r::packet::decode.

The packet that triggers the bug can be found here: kpcyrd/sniffglue#16

You may want to look into nom, as it's easier to decode packets and you get length checks for free. :)
@krolaw
Copy link
Owner

krolaw commented Nov 18, 2017

I suggest adding check in the packet function ensuring the message length is at least 240 bytes.

@lkolbly lkolbly mentioned this issue Oct 21, 2019
Merged
@lkolbly
Copy link
Collaborator

lkolbly commented Oct 21, 2019

This should fixed in 0.2.0 (we use nom now), I've made a PR to update sniffglue: kpcyrd/sniffglue#61

@lkolbly lkolbly closed this as completed Oct 21, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lkolbly @krolaw @kpcyrd