forked from mirror/openwrt
1e9da9798a
memcpy() with overlapping src and dest buffers is an undefined behavior in C. In the current code, a ConfRej response is generated by copying input data in-place, where the dest address is lower than the src. This happens to work in practice because memcpy() forward-copies data, matching the behavior of memmove() in this case. However, if FORTIFY_SOURCE or Address Sanitizer is enabled, memcpy() will detect the overlap at run time and abort the program. Replace the memcpy() with memmove() to ensure a well-defined behavior. Reported-by: Filippo Carletti <filippo.carletti@gmail.com> MRU patch https://github.com/ppp-project/ppp/pull/573 Signed-off-by: Paul Donald <newtwen+github@gmail.com> Link: https://github.com/openwrt/openwrt/pull/22286 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> |
||
|---|---|---|
| .. | ||
| 000-pppd-session-fixed-building-with-gcc-15.patch | ||
| 001-pppdump-fixed-building-with-gcc-15.patch | ||
| 105-debian_demand.patch | ||
| 204-radius_config.patch | ||
| 207-lcp_mtu_max.patch | ||
| 208-fix_status_code.patch | ||
| 310-precompile_filter.patch | ||
| 321-multilink_support_custom_iface_names.patch | ||
| 340-populate_default_gateway.patch | ||
| 400-simplify_kernel_checks.patch | ||
| 401-no_record_file.patch | ||
| 404-remove_obsolete_protocol_names.patch | ||
| 405-no_multilink_option.patch | ||
| 500-add-pptp-plugin.patch | ||
| 501-fix-memcpy-fortify.patch | ||
| 502-remove_mru.patch | ||