From a86c3e601ce8a93a3f6eb6b3b8409414ab12452a Mon Sep 17 00:00:00 2001 From: david-guti <114598986+david-guti@users.noreply.github.com> Date: Wed, 22 Mar 2023 16:08:22 +0100 Subject: [PATCH 1/2] Update en10mb.c Fixed expression to detect an ip6 multicast packet --- src/tcpedit/plugins/dlt_en10mb/en10mb.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/tcpedit/plugins/dlt_en10mb/en10mb.c b/src/tcpedit/plugins/dlt_en10mb/en10mb.c index 671572ec..4345cf89 100644 --- a/src/tcpedit/plugins/dlt_en10mb/en10mb.c +++ b/src/tcpedit/plugins/dlt_en10mb/en10mb.c @@ -807,7 +807,7 @@ static void dlt_en10mb_ipv6_multicast_mac_update(const struct tcpr_in6_addr *ip6 uint8_t mac[]) { /* only modify multicast packets */ - if (ip6->tcpr_s6_addr[0] == 0xff) + if (ip6->tcpr_s6_addr[0] != 0xff) return; mac[0] = 0x33; From e3e18e6d2648e64c7a2a3ddd4e950aa700d13647 Mon Sep 17 00:00:00 2001 From: Fred Klassen Date: Sat, 10 Jun 2023 11:12:30 -0700 Subject: [PATCH 2/2] Bug #793: document PR #793 --- docs/CHANGELOG | 1 + docs/CREDIT | 5 ++++- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/docs/CHANGELOG b/docs/CHANGELOG index 84c510c3..6a3256bd 100644 --- a/docs/CHANGELOG +++ b/docs/CHANGELOG @@ -1,4 +1,5 @@ 06/04/2023 Version 4.4.4-beta1 + - tcpreplay-edit: prevent L2 flooding of ipv6 unicast packets (#793) - CVE-2023-27786 bugs caused by strtok_r (#782 #784 #785 #786 #787 #788) - CVE-2023-27783 reachable assert in tcpedit_dlt_cleanup (#780) - add CI - C/C++ Linter and CodeQL (#773) diff --git a/docs/CREDIT b/docs/CREDIT index c5372125..467e076c 100644 --- a/docs/CREDIT +++ b/docs/CREDIT @@ -109,4 +109,7 @@ Halver - specify directories as files Florian Weimer - - Avoid implicit int in configure.ac \ No newline at end of file + - Avoid implicit int in configure.ac + +David Guti + - prevent L2 flooding of ipv6 unicast packets for tcpreplay-edit