aboutsummaryrefslogtreecommitdiff
path: root/package/tcpdump/tcpdump.mk
diff options
context:
space:
mode:
authorGravatar Fabrice Fontaine <fontaine.fabrice@gmail.com>2020-11-13 21:21:15 +0100
committerGravatar Peter Korsgaard <peter@korsgaard.com>2020-11-14 14:18:27 +0100
commite3a663f5705c492f52128b4a7ff514480332b6df (patch)
treea3a8f280881445986b1c08328ab3dca11ab59ec7 /package/tcpdump/tcpdump.mk
parentbd85d82f61af0578a64e74e1cfb56c3c1bf46fe1 (diff)
downloadbuildroot-e3a663f5705c492f52128b4a7ff514480332b6df.tar.gz
buildroot-e3a663f5705c492f52128b4a7ff514480332b6df.tar.bz2
package/tcpdump: fix CVE-2020-8037
The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/tcpdump/tcpdump.mk')
-rw-r--r--package/tcpdump/tcpdump.mk3
1 files changed, 3 insertions, 0 deletions
diff --git a/package/tcpdump/tcpdump.mk b/package/tcpdump/tcpdump.mk
index 01a46b9b5f..8db35694ea 100644
--- a/package/tcpdump/tcpdump.mk
+++ b/package/tcpdump/tcpdump.mk
@@ -18,6 +18,9 @@ TCPDUMP_CONF_OPTS = \
$(if $(BR2_PACKAGE_TCPDUMP_SMB),--enable-smb,--disable-smb)
TCPDUMP_DEPENDENCIES = libpcap
+# 0001-PPP-When-un-escaping-don-t-allocate-a-too-large-buffer.patch
+TCPDUMP_IGNORE_CVES += CVE-2020-8037
+
ifeq ($(BR2_STATIC_LIBS),y)
TCPDUMP_CONF_OPTS += LIBS="`$(STAGING_DIR)/usr/bin/pcap-config --static --additional-libs`"
endif