[Tcpick-project] A quick fix for CVE-2006-0048

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hi,

here is a very quick fix so that at least tcpick does not segfault.

tcpick will abort like this with this patch:

# tcpick -r /tmp/tcpick_test.pcap -a -Y -yP -n "not port 22"
tcpick: invalid option -- Y
Starting tcpick 0.2.1 at 2006-04-03 21:16 CEST
Timeout for connections is 600
tcpick: reading from /tmp/tcpick_test.pcap
setting filter: "not port 22"
1      SYN-SENT       10.1.7.1:1025 > 10.1.7.3:443
seqprobe
.8...........1.7.1.10.in-addr.arpa.....
SUICIDE: [got_packet] payload lenght calculated with iplen and hdr->len
differs by -10 bytes
hdr->len = 64
datalink_size  = 14
IP_SIZE  = 20
iplen    = 40
tcp_size = 20
iplen - IP_SIZE - tcp_size = 0
(hdr->len - (int)( payload - packet ) = 10

3 packets captured
1 tcp sessions detected

Regards,

-- 
Cédric Delfosse, http://cdelfosse.free.fr
Get a free backup server: http://lrs.linbox.org !