[lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284

lwip-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284

From:	Joan Lledó
Subject:	[lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284
Date:	Sun, 8 Aug 2021 20:03:07 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.12.0

Hi,

I'm maintaining the lwip package in Debian, now I'd like to apply thepatches to fix he CVEs 2020-22283 & 2020-22284, which are in [1] & [2].

The Debian package takes the code from the 2.1.2 release, at [3], and Ican't apply the commits at [1] & [2] directly since they are createdfrom a later code.

Attached is a patch I wrote, basically adding the implementation forpbuf_copy_partial_pbuf and calling it from icmp6.c and zepif.c

Could any of you take a fast look at it and tell me if it seems ok? I'dappreciate it.


Regards

---
[1] https://savannah.nongnu.org/bugs/index.php?58553
[2] https://savannah.nongnu.org/bugs/index.php?58554

[3]https://git.savannah.nongnu.org/cgit/lwip.git/tree/?h=STABLE-2_1_2_RELEASE

CVEs.patch
Description: Text Data

[Prev in Thread]

Current Thread

[Next in Thread]

[lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284, Joan Lledó <=
- Re: [lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284, Erik Ekman, 2021/08/15
  - Re: [lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284, address@hidden, 2021/08/15

Prev by Date: [lwip-devel] [patch #10088] allow "typedef u32_t mem_size_t" when MEM_SIZE > 640000L and MEM_USE_POOLS
Next by Date: [lwip-devel] [bug #61023] Reassigned to another tracker [was: Request for seeking help to understand lwip stack on tms320f2838xd .......]
Previous by thread: [lwip-devel] [patch #10088] allow "typedef u32_t mem_size_t" when MEM_SIZE > 640000L and MEM_USE_POOLS
Next by thread: Re: [lwip-devel] Fixing CVE-2020-22283 & CVE-2020-22284
Index(es):
- Date
- Thread