mirror/bl_iot_sdk
1
0
Fork 0
mirror of https://github.com/pine64/bl_iot_sdk.git synced 2024-10-04 14:00:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
7 Commits 2 Branches 0 Tags 1.6 GiB
c9ff47b828
Commit Graph

4 Commits

Author SHA1 Message Date
Paul Mackerras
c9ff47b828
pppd: Ignore received EAP messages when not doing EAP 
This adds some basic checks to the subroutines of eap_input to check
that we have requested or agreed to doing EAP authentication before
doing any processing on the received packet.  The motivation is to
make it harder for a malicious peer to disrupt the operation of pppd
by sending unsolicited EAP packets.  Note that eap_success() already
has a check that the EAP client state is reasonable, and does nothing
(apart from possibly printing a debug message) if not.

Signed-off-by: Paul Mackerras <paulus@ozlabs.org>
 2020-10-29 00:12:01 +01:00
Josef Schlehofer
87970e63c5
Fix buffer overflow in EAP 
Fixes CVE-2020-8597
 2020-10-28 19:41:15 +01:00
bouffalolab2020
61d60a3dc0
Delete README.md 2020-10-27 10:34:41 +08:00
Rujun Wang
ee4a10b1a1 Initial Commit 2020-10-26 20:35:25 +08:00