491784 – <sys-apps/iproute2-3.12.0 - ip xfrm: buffer overflow detected

Bug 491784 - <sys-apps/iproute2-3.12.0 - ip xfrm: buffer overflow detected

Summary: <sys-apps/iproute2-3.12.0 - ip xfrm: buffer overflow detected

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo's Team for Core System packages

URL:
Whiteboard:
Keywords:	PATCH

Depends on:
Blocks:

Reported:	2013-11-20 16:16 UTC by Alexander Tsoy
Modified:	2013-11-28 00:46 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Tsoy 2013-11-20 16:16:18 UTC

This problem is reproducible at least with iproute2-{3.8.0,3.9.0,3.11.0}

$ sudo LANG=C ip xfrm state add proto esp src 192.168.11.223 dst 192.168.11.211 spi 0xfcd97fca mode transport enc 'cbc(des3_ede)' 3a86494104869430429062ca
*** buffer overflow detected ***: ip - terminated
ip: buffer overflow attack in function <unknown> - terminated
Report to http://bugs.gentoo.org/

Seems like it should be fixed by the following commit (I didn't test it yet):
https://git.kernel.org/cgit/linux/kernel/git/shemminger/iproute2.git/commit/?id=99500b56d94dfa735a3d088fdbdde6c0c2638e78

Comment 1 Alexander Tsoy 2013-11-21 12:21:44 UTC

Yes, that patch fixes the issue.

Comment 2 SpanKY gentoo-dev

2013-11-28 00:46:29 UTC

3.12.0 is in the tree now