Multicast join/drop buffer overflows

GNU Common C++ libraries and applications

Status: Beta

Brought to you by: dyfet, kinnison

This project can now be found here.

#228 Multicast join/drop buffer overflows

Status: open

Owner: nobody

Labels: Bug Reporter (45)

Priority: 5

Updated: 2012-11-20

Created: 2011-04-12

Creator: Alan Pettitt

Private: No

Multicast socket join and drop can cause a buffer overflow error on 64-bit platforms.
The problem is caused by instances of the following memory copies:

memcpy(&group.imr_interface, &myaddr.sin_addr, sizeof(&myaddr.sin_addr))

The address-of operator used in the size of the memory copy should be removed, i.e.:

memcpy(&group.imr_interface, &myaddr.sin_addr, sizeof(myaddr.sin_addr))

The effect is to attempt to copy 8 bytes to/from structures that are only 4 bytes in size when pointers are 64-bit

Multicast join/drop buffer overflows

GNU Common C++ libraries and applications

Group

Searches

Help

#228 Multicast join/drop buffer overflows

Discussion