From be6faec6d07fc3a2a54836e76d0309c36192dfad Mon Sep 17 00:00:00 2001
From: fenner <fenner@FreeBSD.org>
Date: Tue, 13 Jan 2004 17:28:59 +0000
Subject: Commit vendor update for vulnerabilities found by Jonathan Heusser
 <jonny@drugphish.ch>

---
 contrib/tcpdump/print-isakmp.c | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'contrib/tcpdump/print-isakmp.c')

diff --git a/contrib/tcpdump/print-isakmp.c b/contrib/tcpdump/print-isakmp.c
index 6e5c58d..d00d575 100644
--- a/contrib/tcpdump/print-isakmp.c
+++ b/contrib/tcpdump/print-isakmp.c
@@ -332,9 +332,13 @@ rawprint(caddr_t loc, size_t len)
 	static u_char *p;
 	int i;
 
+	TCHECK2(*loc, len);
+	
 	p = (u_char *)loc;
 	for (i = 0; i < len; i++)
 		printf("%02x", p[i] & 0xff);
+trunc:
+
 }
 
 struct attrmap {
@@ -1060,6 +1064,8 @@ isakmp_sub_print(u_char np, struct isakmp_gen *ext, u_char *ep,
 	cp = (u_char *)ext;
 
 	while (np) {
+		TCHECK2(*ext, sizeof(e));
+		
 		safememcpy(&e, ext, sizeof(e));
 
 		if (ep < (u_char *)ext + ntohs(e.len)) {
@@ -1085,6 +1091,8 @@ isakmp_sub_print(u_char np, struct isakmp_gen *ext, u_char *ep,
 		ext = (struct isakmp_gen *)cp;
 	}
 	return cp;
+trunc:
+	return NULL;
 }
 
 static char *
-- 
cgit v1.1